Automattic

Security Scorecard

Score

39F

Total CVEs

135

Patch Rate

5%

7 patched

Avg Response

-

days to patch

Critical Gaps

1

exploitable, no detection

Severity Breakdown

Critical1

High10

Medium124

Low0

Patch Status

Patched7 (5%)

Partial/Workaround0 (0%)

Unpatched128 (95%)

CVEs (157)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2025-13137	Woomotiv Plugin Vulnerability	MEDIUM	6.1	8d	Unpatched
CVE-2025-13748	Fluent Forms Vulnerability	MEDIUM	5.3	8d	Unpatched
CVE-2025-12417	SurveyFunnel – Survey Plugin Vulnerability	MEDIUM	6.4	9d	Unpatched
CVE-2025-12191	PDF Catalog for WooCommerce Vulnerability	MEDIUM	5.4	9d	Unpatched
CVE-2025-13528	Feedback Modal for Website Plugin Vulnerability	MEDIUM	5.3	9d	Unpatched
CVE-2025-13620	Wp Social Login Vulnerability	MEDIUM	5.3	9d	Unpatched
CVE-2025-12128	Hide Categories Or Products On Shop Page Plugin Vulnerability	MEDIUM	4.3	9d	Unpatched
CVE-2025-13144	Cross-Site Request Forgery in ContentStudio Plugin	MEDIUM	4.3	9d	Unpatched
CVE-2025-12782	Beaver Builder Authorization Bypass	MEDIUM	4.3	-	Patched
CVE-2025-13401	Autoptimize Plugin Vulnerability	MEDIUM	6.4	11d	Unpatched