Automattic

Security Scorecard

Score

39F

Total CVEs

135

Patch Rate

5%

7 patched

Avg Response

-

days to patch

Critical Gaps

1

exploitable, no detection

Severity Breakdown

Critical1

High10

Medium124

Low0

Patch Status

Patched7 (5%)

Partial/Workaround0 (0%)

Unpatched128 (95%)

CVEs (157)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2025-8195	JetWidgets For Elementor Plugin Vulnerability	N/A	-	2d	Unpatched
CVE-2025-8199	MarqueeAddons Vulnerability	N/A	-	2d	Unpatched
CVE-2025-13956	LearnPress WordPress LMS Plugin Vulnerability	N/A	-	0d	Unpatched
CVE-2025-14002	WPCOM Member Plugin Brute Force Bypass	N/A	-	0d	Unpatched
CVE-2025-11220	Elementor Plugin Vulnerability	N/A	-	0d	Unpatched
CVE-2025-11369	Gutenberg Essential Blocks – Page Builder Vulnerability	N/A	-	0d	Unpatched
CVE-2025-13880	CVE-2025-13880	N/A	-	0d	Unpatched
CVE-2025-11924	Ninja Forms Contact Form Builder Vulnerability	N/A	-	0d	Unpatched
CVE-2025-66133	GDPR Cookie Notice Vulnerability	N/A	-	1d	Unpatched
CVE-2025-13537	Live Composer – Free WordPress Website Builder Plugin Vulnerability	N/A	-	0d	Unpatched