WordPress.org

Security Scorecard

Score

21F

Total CVEs

527

Patch Rate

2%

8 patched

Avg Response

-

days to patch

Critical Gaps

9

exploitable, no detection

Severity Breakdown

Critical6

High36

Medium483

Low2

Patch Status

Patched8 (2%)

Partial/Workaround0 (0%)

Unpatched519 (98%)

CVEs (619)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2025-13513	Clik Stats Plugin Vulnerability	MEDIUM	6.1	10d	Unpatched
CVE-2025-11379	WebP Express Plugin Vulnerability	MEDIUM	5.3	10d	Unpatched
CVE-2025-13646	Modula Image Gallery Vulnerability	HIGH	7.5	10d	Unpatched
CVE-2025-13645	Modula Image Gallery Plugin Vulnerability	HIGH	7.2	10d	Unpatched
CVE-2025-13448	CSSIgniter Shortcodes Vulnerability	MEDIUM	6.4	11d	Unpatched
CVE-2025-12887	CVE-2025-12887	MEDIUM	5.4	11d	Unpatched
CVE-2025-13109	HUSKY WooCommerce Products Filter Professional Vulnerability	MEDIUM	4.3	11d	Unpatched
CVE-2025-13387	Kadence WooCommerce Email Designer Plugin Vulnerability	HIGH	7.2	11d	Unpatched
CVE-2025-13606	WordPress Export All Posts & Products Plugin Vulnerability	MEDIUM	6.5	12d	Unpatched
CVE-2025-13007	WP Social Ninja Vulnerability	MEDIUM	6.1	12d	Unpatched