WordPress.org
Security Scorecard
Score
34D
Total CVEs
895
Patch Rate
47%
418 patched
Avg Response
104d
days to patch
Critical Gaps
8
exploitable, no detection
Severity Breakdown
Critical39
High156
Medium698
Low2
Patch Status
Patched418 (47%)
Partial/Workaround4 (0%)
Unpatched473 (53%)
CVEs (1,107)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-12094 | - | Medium | 5.3 | 49d | Unpatched |
| CVE-2025-11806 | - | Medium | 6.4 | 49d | Unpatched |
| CVE-2025-64351 | Wordpress SEO by Rank Math Vulnerability | Medium | 4.3 | 82d | Unpatched |
| CVE-2025-64354 | Matias Ventura Gutenberg XSS | Medium | 6.5 | 82d | Unpatched |
| CVE-2025-11881 | - | Medium | 5.3 | 50d | Unpatched |
| CVE-2025-12475 | - | Medium | 6.4 | 50d | Unpatched |
| CVE-2025-11632 | - | Medium | 4.3 | 51d | Unpatched |
| CVE-2015-10147 | - | Medium | 4.9 | 51d | Unpatched |
| CVE-2025-64200 | VillaTheme Email Template Customizer for WooCommerce XSS Vulnerability | Medium | 5.9 | 84d | Unpatched |
| CVE-2025-11705 | - | Medium | 6.5 | 51d | Unpatched |