WordPress.org
Security Scorecard
Score
21F
Total CVEs
527
Patch Rate
2%
8 patched
Avg Response
-
days to patch
Critical Gaps
9
exploitable, no detection
Severity Breakdown
Critical6
High36
Medium483
Low2
Patch Status
Patched8 (2%)
Partial/Workaround0 (0%)
Unpatched519 (98%)
CVEs (619)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-12109 | Header Footer Script Adder Vulnerability | N/A | - | 2d | Unpatched |
| CVE-2025-12362 | MyCred Points Management System Vulnerability | N/A | - | 2d | Unpatched |
| CVE-2025-12512 | GenerateBlocks Plugin Vulnerability | N/A | - | 2d | Unpatched |
| CVE-2025-13092 | Dev's CRM Plugin Vulnerability | N/A | - | 2d | Unpatched |
| CVE-2025-13705 | Custom Frames Plugin Vulnerability | N/A | - | 2d | Unpatched |
| CVE-2025-14050 | WordPress Design Import/Export Plugin SQL Injection | N/A | - | 2d | Unpatched |
| CVE-2025-14056 | Custom Post Type UI Plugin Vulnerability | N/A | - | 2d | Unpatched |
| CVE-2025-14288 | Simply Gallery Block Vulnerability | N/A | - | 2d | Unpatched |
| CVE-2025-14365 | Eyewear Plugin Vulnerability | N/A | - | 2d | Unpatched |
| CVE-2025-14366 | Eyewear Plugin Vulnerability | N/A | - | 2d | Unpatched |