WordPress.org

Security Scorecard

Score

29C

Total CVEs

540

Patch Rate

20%

106 patched

Avg Response

43d

days to patch

Critical Gaps

9

exploitable, no detection

Severity Breakdown

Critical9
High40
Medium489
Low2

Patch Status

Patched106 (20%)
Partial/Workaround0 (0%)
Unpatched434 (80%)

CVEs (632)

CVE IDTitleSeverityScoreDaysPatch
CVE-2025-11880SM CountDown Widget Plugin VulnerabilityMEDIUM6.458dUnpatched
CVE-2025-11870WordPress Simple Business Data Plugin VulnerabilityMEDIUM6.458dUnpatched
CVE-2025-11830WP Restaurant Listings Plugin VulnerabilityMEDIUM6.458dUnpatched
CVE-2025-11824Cinza Grid Plugin VulnerabilityMEDIUM6.458dUnpatched
CVE-2025-5983Meta Tag Manager WordPress Plugin VulnerabilityMEDIUM6.558dPatched
CVE-2025-11811Wordpress Shortcode VulnerabilityMEDIUM6.458dUnpatched
CVE-2025-12033Simple Banner WordPress Plugin VulnerabilityMEDIUM4.458dUnpatched
CVE-2025-10651Welcart e-Commerce Plugin VulnerabilityMEDIUM5.558dUnpatched
CVE-2025-11817Simple Tableau Viz Plugin VulnerabilityMEDIUM6.458dUnpatched
CVE-2025-11813Responsive iframe GoogleMap Plugin VulnerabilityMEDIUM6.458dUnpatched