Automattic
Security Scorecard
Score
39F
Total CVEs
135
Patch Rate
5%
7 patched
Avg Response
-
days to patch
Critical Gaps
1
exploitable, no detection
Severity Breakdown
Critical1
High10
Medium124
Low0
Patch Status
Patched7 (5%)
Partial/Workaround0 (0%)
Unpatched128 (95%)
CVEs (157)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-14169 | FunnelKit Vulnerability | HIGH | 7.5 | - | Unknown |
| CVE-2025-13334 | CVE-2025-13334 | HIGH | 8.1 | - | Unknown |
| CVE-2025-13320 | WP User Manager Plugin Vulnerability | MEDIUM | 6.8 | 2d | Unpatched |
| CVE-2025-12960 | CSV Table Plugin Vulnerability | MEDIUM | 6.5 | 2d | Unpatched |
| CVE-2025-13866 | Flow-Flow Social Feed Stream Vulnerability | MEDIUM | 6.4 | 2d | Unpatched |
| CVE-2025-13989 | WP Dropzone Plugin Vulnerability | MEDIUM | 6.4 | 2d | Unpatched |
| CVE-2025-14119 | WPBakery Page Builder Template Block Vulnerability | MEDIUM | 6.4 | 2d | Unpatched |
| CVE-2025-14170 | Vimeo SimpleGallery Plugin Vulnerability | MEDIUM | 5.3 | 2d | Unpatched |
| CVE-2025-14442 | Secure Copy Content Protection Vulnerability | MEDIUM | 5.3 | 2d | Unpatched |
| CVE-2025-13975 | CF7 ChatWork Plugin Vulnerability | MEDIUM | 4.4 | 2d | Unpatched |