WordPress.org

Security Scorecard

Score

21F

Total CVEs

527

Patch Rate

2%

8 patched

Avg Response

-

days to patch

Critical Gaps

9

exploitable, no detection

Severity Breakdown

Critical6
High36
Medium483
Low2

Patch Status

Patched8 (2%)
Partial/Workaround0 (0%)
Unpatched519 (98%)

CVEs (619)

CVE IDTitleSeverityScoreDaysPatch
CVE-2025-12634WooCommerce Refund Request Plugin VulnerabilityMEDIUM4.320dUnpatched
CVE-2025-12628CVE-2025-12628MEDIUM6.321dUnpatched
CVE-2025-12800CVE-2025-12800MEDIUM6.422dUnpatched
CVE-2025-13526OneClick WhatsApp Order Plugin VulnerabilityHIGH7.521dUnpatched
CVE-2025-11186CVE-2025-11186MEDIUM6.423dUnpatched
CVE-2025-12877IDonate Plugin VulnerabilityMEDIUM5.3-Patched
CVE-2025-13317Appointment Booking Calendar Plugin VulnerabilityMEDIUM5.323dUnpatched
CVE-2025-13318Booking Calendar Contact Form VulnerabilityMEDIUM5.323dUnpatched
CVE-2025-11985Realty Portal Plugin VulnerabilityHIGH8.822dUnpatched
CVE-2025-12138URL Image Importer Plugin VulnerabilityHIGH8.822dUnpatched