Automattic
Security Scorecard
Score
39F
Total CVEs
135
Patch Rate
5%
7 patched
Avg Response
-
days to patch
Critical Gaps
1
exploitable, no detection
Severity Breakdown
Critical1
High10
Medium124
Low0
Patch Status
Patched7 (5%)
Partial/Workaround0 (0%)
Unpatched128 (95%)
CVEs (157)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-14467 | WP Job Portal Plugin Vulnerability | MEDIUM | 4.4 | 2d | Unpatched |
| CVE-2025-14356 | Contact Form 7 PDF Generator Vulnerability | MEDIUM | 4.3 | 2d | Unpatched |
| CVE-2025-14159 | Secure Copy Content Protection Plugin Vulnerability | MEDIUM | 4.3 | 2d | Unpatched |
| CVE-2025-67564 | Pixel Manager Vulnerability | MEDIUM | 5.3 | 5d | Unpatched |
| CVE-2025-12558 | Beaver Builder Sensitive Info Exposure | MEDIUM | 4.3 | - | Patched |
| CVE-2025-67588 | Elementor Website Builder Bypass | MEDIUM | 4.3 | 5d | Unpatched |
| CVE-2025-67589 | CVE-2025-67589 | MEDIUM | 4.3 | 5d | Unpatched |
| CVE-2025-13924 | WooCommerce Advanced Product Fields Vulnerability | MEDIUM | 4.3 | 5d | Unpatched |
| CVE-2025-13857 | YetAnotherWebClap | MEDIUM | 6.4 | 8d | Unpatched |
| CVE-2025-13863 | RevInsite Plugin Vulnerability | MEDIUM | 6.4 | 8d | Unpatched |