WordPress.org
Security Scorecard
Score
21F
Total CVEs
526
Patch Rate
2%
8 patched
Avg Response
-
days to patch
Critical Gaps
9
exploitable, no detection
Severity Breakdown
Critical6
High35
Medium483
Low2
Patch Status
Patched8 (2%)
Partial/Workaround0 (0%)
Unpatched518 (98%)
CVEs (618)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-14163 | Elementor Premium Addons Cross-Site Request Forgery | N/A | - | 0d | Unpatched |
| CVE-2025-14388 | PhastPress Plugin Vulnerability | N/A | - | 0d | Unpatched |
| CVE-2025-14548 | WordPress Calendar Plugin Vulnerability | N/A | - | 0d | Unpatched |
| CVE-2025-14000 | WordPress Restrict Content Plugin Vulnerability | N/A | - | 0d | Unpatched |
| CVE-2025-14635 | Happy Addons for Elementor Plugin Vulnerability | N/A | - | 0d | Unpatched |
| CVE-2025-68550 | VillaTheme WPBulky SQL Injection Vulnerability | N/A | - | 0d | Unpatched |
| CVE-2025-68551 | VPSUForm Vulnerability | N/A | - | 0d | Unpatched |
| CVE-2025-68557 | Chakra Test Vulnerability | N/A | - | 0d | Unpatched |