Automattic
Security Scorecard
Score
39F
Total CVEs
135
Patch Rate
5%
7 patched
Avg Response
-
days to patch
Critical Gaps
1
exploitable, no detection
Severity Breakdown
Critical1
High10
Medium124
Low0
Patch Status
Patched7 (5%)
Partial/Workaround0 (0%)
Unpatched128 (95%)
CVEs (157)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-11271 | Easy Digital Downloads Order Manipulation Exploit | MEDIUM | 5.3 | 40d | Unpatched |
| CVE-2025-10691 | Easy Email Subscription Plugin Vulnerability | MEDIUM | 4.3 | 40d | Unpatched |
| CVE-2025-12192 | Events Calendar Plugin Vulnerability | MEDIUM | 5.3 | 41d | Unpatched |
| CVE-2025-11820 | Graphina Elementor Charts and Graphs Plugin Vulnerability | MEDIUM | 6.4 | 41d | Unpatched |
| CVE-2025-12184 | WordPress MeetingList Plugin Vulnerability | MEDIUM | 4.4 | 42d | Unpatched |
| CVE-2025-12156 | Gemini Writer Vulnerability | MEDIUM | 4.3 | 42d | Unpatched |
| CVE-2025-12413 | WPCF7 Stop Words Plugin Vulnerability | MEDIUM | 5.4 | 42d | Unpatched |
| CVE-2025-12324 | TablePress Vulnerability | MEDIUM | 6.4 | 42d | Unpatched |
| CVE-2025-12180 | Qi Blocks Plugin Vulnerability | MEDIUM | 4.3 | 45d | Unpatched |
| CVE-2025-11502 | Schema & Structured Data for WP & AMP Plugin Vulnerability | MEDIUM | 6.4 | 45d | Unpatched |