Automattic (WordPress)
Security Scorecard
Score
35F
Total CVEs
38
Patch Rate
0%
0 patched
Avg Response
-
days to patch
Critical Gaps
1
exploitable, no detection
Severity Breakdown
Critical1
High4
Medium33
Low0
Patch Status
Patched0 (0%)
Partial/Workaround0 (0%)
Unpatched38 (100%)
CVEs (45)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-11859 | PayPal Donation Shortcode Vulnerability | MEDIUM | 6.4 | 35d | Unpatched |
| CVE-2025-12167 | CF7 AWeber Extension Vulnerability | MEDIUM | 4.3 | 38d | Unpatched |
| CVE-2025-12520 | WP Airbnb Review Slider Vulnerability | MEDIUM | 4.0 | 39d | Unpatched |
| CVE-2025-11268 | WordPress Strong Testimonials Plugin Vulnerability | MEDIUM | 4.3 | 40d | Unpatched |
| CVE-2025-11835 | Paid Membership Subscriptions Vulnerability | MEDIUM | 5.3 | 41d | Unpatched |
| CVE-2025-12402 | LinkedIn Resume Plugin Vulnerability | MEDIUM | 6.1 | 42d | Unpatched |
| CVE-2025-11841 | Greenshift Animation & Page Builder Blocks Vulnerability | MEDIUM | 6.4 | 42d | Unpatched |
| CVE-2025-12367 | SiteSEO Vulnerability | MEDIUM | 4.3 | 45d | Unpatched |
| CVE-2025-11816 | WP Legal Pages Plugin Vulnerability | MEDIUM | 5.3 | 45d | Unpatched |
| CVE-2025-64210 | Masterstudy Elementor Widgets Exploit | MEDIUM | 5.4 | 51d | Unpatched |