Automattic

Security Scorecard

Score

67C

Total CVEs

214

Patch Rate

47%

101 patched

Avg Response

40d

days to patch

Critical Gaps

0

exploitable, no detection

Severity Breakdown

Critical10
High29
Medium175
Low0

Patch Status

Patched101 (47%)
Partial/Workaround1 (0%)
Unpatched112 (52%)

CVEs (273)

CVE IDTitleSeverityScoreDaysPatch
CVE-2025-15043WordPress Plugin XSSMedium5.4-Patched
CVE-2025-12002Feeds for YouTube Pro Plugin VulnerabilityMedium5.9-Patched
CVE-2025-13725Thim Blocks – Page Builder VulnerabilityMedium6.5-Patched
CVE-2025-14463PayPal Payment Button VulnerabilityMedium5.3-Patched
CVE-2026-0833WordPress Team Section Block Plugin VulnerabilityMedium6.4-Patched
CVE-2025-10484WooCommerce Registration & Login with Mobile Phone Number BypassCritical9.8-Patched
CVE-2025-12957All-in-One Video Gallery Plugin VulnerabilityHigh8.8-Patched
CVE-2025-15527WP Recipe Maker Plugin VulnerabilityMedium4.3-Patched
CVE-2025-14844WordPress Restrict Content Plugin VulnerabilityHigh8.20dUnpatched
CVE-2025-14448WP-Members Plugin VulnerabilityMedium5.4-Patched