WordPress.org

Security Scorecard

Score

34D

Total CVEs

888

Patch Rate

46%

412 patched

Avg Response

104d

days to patch

Critical Gaps

8

exploitable, no detection

Severity Breakdown

Critical39
High156
Medium691
Low2

Patch Status

Patched412 (46%)
Partial/Workaround4 (0%)
Unpatched472 (53%)

CVEs (1,100)

CVE IDTitleSeverityScoreDaysPatch
CVE-2024-6028-Critical9.8-Patched
CVE-2024-3605-Critical10.0551dUnpatched
CVE-2024-2470Simple Ajax Chat VulnerabilityMedium5.4584dUnpatched
CVE-2024-3643Newsletter Popup WordPress Plugin XSSHigh8.8-Patched
CVE-2024-32702ARForms Plugin XSSHigh7.1-Patched
CVE-2024-32597WordPress Plugin XSSMedium5.9-Patched
CVE-2024-30244Church Admin Plugin SQL InjectionHigh8.5-Patched
CVE-2024-30193Church Admin Plugin XSSMedium6.5-Patched
CVE-2024-29926WC Builder XSS VulnerabilityMedium6.5672dUnpatched
CVE-2023-45771Contact Form With Captcha Plugin XSSHigh7.1-Patched