WordPress.org

Security Scorecard

Score

21F

Total CVEs

526

Patch Rate

2%

8 patched

Avg Response

-

days to patch

Critical Gaps

9

exploitable, no detection

Severity Breakdown

Critical6

High35

Medium483

Low2

Patch Status

Patched8 (2%)

Partial/Workaround0 (0%)

Unpatched518 (98%)

CVEs (618)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2025-12505	weDocs Plugin Vulnerability	MEDIUM	5.4	8d	Unpatched
CVE-2025-12720	g-FFL Cockpit Plugin Vulnerability	MEDIUM	5.3	8d	Unpatched
CVE-2025-13358	CodeConfig Accessibility Plugin Vulnerability	MEDIUM	5.3	8d	Unpatched
CVE-2025-13666	Helloprint Plugin Vulnerability	MEDIUM	5.3	8d	Unpatched
CVE-2025-12091	CVE-2025-12091	MEDIUM	4.3	8d	Unpatched
CVE-2025-12574	Listar Directory Listing & Classifieds Plugin Vulnerability	MEDIUM	4.3	8d	Unpatched
CVE-2025-13309	CodeConfig Accessibility – Easy One-Click Accessibility Toolbar That Truly Matters	MEDIUM	4.3	8d	Unpatched
CVE-2025-13629	WP Landing Page Cross-Site Request Forgery	MEDIUM	4.3	8d	Unpatched
CVE-2025-12851	My Auctions Allegro Plugin Vulnerability	HIGH	8.1	-	Unknown
CVE-2025-13614	WordPress Cool Tag Cloud Plugin Vulnerability	HIGH	8.1	-	Unknown