Automattic
38 indexed plugins
Plugins
38
Active Installs
19m+
Average Score
50
Findings
30k+
Most Downloaded
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #1 | Jetpack – WP Security, Backup, Speed, & Growth | 23 | 2,821 | 1,303 | 3m+ | Text Domain Mismatch | ||
| #2 | WooCommerce | 21 | 1,359 | 6,172 | 7m+ | Non-prefixed global variable | ||
| #3 | Akismet Anti-spam: Spam Protection | 35 | 33 | 99 | 6m+ | Non-prefixed global variable | ||
| #4 | WP Super Cache | 25 | 800 | 989 | 1m+ | Output is not escaped | ||
| #5 | Jetpack Boost – Website Speed, Performance and Critical CSS | 29 | 647 | 248 | 200k+ | Text Domain Mismatch | ||
| #6 | WP Job Manager | 27 | 92 | 578 | 80k+ | Non-prefixed hook name | ||
| #7 | Jetpack Protect | 30 | 657 | 217 | 100k+ | Text Domain Mismatch | ||
| #8 | WooCommerce Legacy REST API | 31 | 324 | 177 | 400k+ | Missing Translators Comment | ||
| #9 | Limit Login Attempts | 40 | 81 | 38 | 300k+ | Output is not escaped | ||
| #10 | Jetpack VaultPress | 28 | 71 | 362 | 10k+ | Missing nonce verification | ||
| #11 | Jetpack CRM – Clients, Leads, Invoices, Billing, Email Marketing, & Automation | 24 | 1,211 | 3,152 | 30k+ | Non-prefixed global variable | ||
| #12 | Co-Authors Plus | 37 | 20 | 110 | 20k+ | Nonce verification recommended | ||
| #13 | Crowdsignal Dashboard – Polls, Surveys & more | 26 | 486 | 489 | 200k+ | Unsafe printing function | ||
| #14 | Jetpack Social | 48 | 829 | 254 | 30k+ | Text Domain Mismatch | ||
| #15 | WordPress.com Editing Toolkit | 67 | 52 | 90 | 1k+ | Missing direct file access protection | ||
| #16 | Sensei LMS – Online Courses, Quizzes, & Learning | 25 | 56 | 928 | 10k+ | Nonce verification recommended | ||
| #17 | Action Scheduler | 38 | 92 | 134 | 20k+ | Exception output is not escaped | ||
| #18 | ActivityPub | 81 | 67 | 305 | 6k+ | Non-prefixed global variable | ||
| #19 | Lazy Load | 98 | 4 | 0 | 10k+ | Missing direct file access protection | ||
| #20 | Edit Flow | 34 | 103 | 227 | 4k+ | Non-prefixed hook name | ||
| #21 | Rewrite Rules Inspector | 58 | 7 | 59 | 10k+ | Nonce verification recommended | ||
| #22 | Jetpack VaultPress Backup | 32 | 554 | 211 | 20k+ | Text Domain Mismatch | ||
| #23 | jQuery Lightbox For Native Galleries | 73 | 26 | 7 | 5k+ | Text Domain Mismatch | ||
| #24 | Layout Grid Block | 98 | 5 | 1 | 200k+ | Missing direct file access protection | ||
| #25 | Crowdsignal Forms | 100 | 0 | 200k+ | No open findings | |||
| #26 | Jetpack VideoPress | 36 | 618 | 224 | 7k+ | Text Domain Mismatch | ||
| #27 | Jetpack Search | 45 | 925 | 426 | 5k+ | Text Domain Mismatch | ||
| #28 | Automattic For Agencies Client | 53 | 249 | 184 | 20k+ | Text Domain Mismatch | ||
| #29 | Post Meta Inspector | 83 | 6 | 1 | 2k+ | Unsafe printing function | ||
| #30 | Sensei LMS Certificates | 37 | 97 | 362 | 4k+ | Non-prefixed global variable | ||
| #31 | Zone Manager (Zoninator) | 97 | 5 | 2 | 1k+ | Missing direct file access protection | ||
| #32 | Liveblog | 95 | 22 | 34 | 1k+ | Non-prefixed global variable | ||
| #33 | Page Optimize | 35 | 70 | 41 | 200k+ | Non Singular String Literal Domain | ||
| #34 | WP-Cron Control | 37 | 54 | 22 | 1k+ | Output is not escaped | ||
| #35 | Share a Draft | 41 | 39 | 6 | 3k+ | Output is not escaped | ||
| #36 | Gravatar Enhanced – Avatars, Profiles, and Privacy | 51 | 38 | 48 | 100k+ | Dynamic hook name | ||
| #37 | Migrate to WordPress.com | 62 | 15 | 28 | 2k+ | Output is not escaped | ||
| #38 | Blaze Ads – Fully Integrated Ads Solution | 99 | 1 | 2 | 7k+ | Non-prefixed global variable |
