WordPress.org

Security Scorecard

Score

29C

Total CVEs

540

Patch Rate

20%

106 patched

Avg Response

43d

days to patch

Critical Gaps

9

exploitable, no detection

Severity Breakdown

Critical9
High40
Medium489
Low2

Patch Status

Patched106 (20%)
Partial/Workaround0 (0%)
Unpatched434 (80%)

CVEs (632)

CVE IDTitleSeverityScoreDaysPatch
CVE-2025-12644Nonaki Email Template Builder VulnerabilityMEDIUM6.434dUnpatched
CVE-2025-12663Jeba Cute Forkit Plugin VulnerabilityMEDIUM6.434dUnpatched
CVE-2025-12126Total Book Project Plugin VulnerabilityMEDIUM5.434dUnpatched
CVE-2025-12021WP-OAuth VulnerabilityMEDIUM6.134dUnpatched
CVE-2025-12019WordPress Featured Image Plugin VulnerabilityMEDIUM4.434dUnpatched
CVE-2025-11882WordPress Simple Donate Plugin VulnerabilityMEDIUM6.434dUnpatched
CVE-2025-11891Shelf Planner Plugin VulnerabilityMEDIUM5.334dUnpatched
CVE-2025-11986Crypto Plugin VulnerabilityMEDIUM5.334dUnpatched
CVE-2025-11886CTL Arcade Lite Plugin VulnerabilityMEDIUM4.334dUnpatched
CVE-2025-11988Crypto Plugin VulnerabilityMEDIUM5.334dUnpatched