Automattic (WordPress)

Security Scorecard

Score

35F

Total CVEs

38

Patch Rate

0%

0 patched

Avg Response

-

days to patch

Critical Gaps

1

exploitable, no detection

Severity Breakdown

Critical1
High4
Medium33
Low0

Patch Status

Patched0 (0%)
Partial/Workaround0 (0%)
Unpatched38 (100%)

CVEs (45)

CVE IDTitleSeverityScoreDaysPatch
CVE-2025-11368LearnPress WordPress LMS Plugin VulnerabilityMEDIUM5.324dUnpatched
CVE-2025-12427YITH WooCommerce Wishlist Plugin VulnerabilityMEDIUM5.326dUnpatched
CVE-2025-12974Gravity Forms Plugin VulnerabilityHIGH8.126dUnpatched
CVE-2025-4212WooCommerce Checkout Files Upload VulnerabilityHIGH7.226dUnpatched
CVE-2025-12411Premmerce Wholesale Pricing for WooCommerce Plugin VulnerabilityHIGH7.126dUnpatched
CVE-2025-8605Gutenify VulnerabilityMEDIUM6.427dUnpatched
CVE-2025-12372Permalinks Cascade Plugin VulnerabilityMEDIUM4.327dUnpatched
CVE-2025-64274WPKoi Templates for Elementor VulnerabilityMEDIUM4.332dUnpatched
CVE-2025-12665Ninja Countdown Plugin VulnerabilityMEDIUM4.334dUnpatched
CVE-2025-12631Squirrels Auto Inventory Plugin VulnerabilityMEDIUM4.434dUnpatched