Automattic
Security Scorecard
Score
68C
Total CVEs
221
Patch Rate
49%
108 patched
Avg Response
40d
days to patch
Critical Gaps
0
exploitable, no detection
Severity Breakdown
Critical10
High30
Medium181
Low0
Patch Status
Patched108 (49%)
Partial/Workaround1 (0%)
Unpatched112 (51%)
CVEs (273)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-9057 | - | Medium | 6.4 | 103d | Unpatched |
| CVE-2025-8944 | OceanWP Plugin XSS | Medium | 4.3 | - | Patched |
| CVE-2025-9260 | - | Medium | 6.5 | 105d | Unpatched |
| CVE-2025-9499 | - | Medium | 6.4 | 108d | Unpatched |
| CVE-2025-9500 | - | Medium | 6.4 | 108d | Unpatched |
| CVE-2025-9344 | - | Medium | 6.4 | - | Patched |
| CVE-2025-6200 | GeoDirectory XSS | Medium | 5.9 | - | Patched |
| CVE-2025-2560 | Ninja Forms WordPress Plugin XSS | Medium | 4.8 | - | Patched |
| CVE-2025-2561 | Ninja Forms WordPress Plugin XSS | Medium | 4.8 | - | Patched |
| CVE-2024-6719 | Offload Videos WordPress Plugin Vulnerability | High | 8.1 | 235d | Unpatched |