Automattic
Security Scorecard
Score
68C
Total CVEs
221
Patch Rate
49%
108 patched
Avg Response
40d
days to patch
Critical Gaps
0
exploitable, no detection
Severity Breakdown
Critical10
High30
Medium181
Low0
Patch Status
Patched108 (49%)
Partial/Workaround1 (0%)
Unpatched112 (51%)
CVEs (273)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-10008 | - | Medium | 5.3 | 50d | Unpatched |
| CVE-2023-7320 | - | Medium | 5.3 | 51d | Unpatched |
| CVE-2025-49042 | WooCommerce XSS Vulnerability | Medium | 5.9 | 84d | Unpatched |
| CVE-2025-62903 | WPClever WPC Smart Messages Vulnerability | Medium | 5.4 | 85d | Unpatched |
| CVE-2025-62918 | IgnitionDeck Access Control Bypass | High | 8.8 | 86d | Unpatched |
| CVE-2025-12034 | - | Medium | 4.4 | 55d | Unpatched |
| CVE-2025-11497 | - | Medium | 4.3 | 55d | Unpatched |
| CVE-2025-11976 | - | Medium | 4.3 | 55d | Unpatched |
| CVE-2025-8588 | - | Medium | 6.4 | 55d | Unpatched |
| CVE-2025-8666 | - | Medium | 6.4 | 55d | Unpatched |