| #901 | Everest Toolkit | 29 | 145 | 141 | 1k+ | | | Missing Translators Comment |
| #902 | Advanced Shipping Rates for WooCommerce: Flexible Table Rate Shipping Rules | 29 | 185 | 504 | 2k+ | | | Non-prefixed global variable |
| #903 | reCaptcha by BestWebSoft | 29 | 474 | 272 | 100k+ | | | Text Domain Mismatch |
| #904 | Easy HTTPS Redirection (SSL) | 29 | 266 | 152 | 100k+ | | | Unsafe printing function |
| #905 | Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms | 29 | 625 | 351 | 1k+ | | | Text Domain Mismatch |
| #906 | Wishlist for WooCommerce | 29 | 610 | 296 | 600 | | | Output is not escaped |
| #907 | Login Me Now – Passwordless, Magic Link, OTP & Social Login for WordPress | 29 | 86 | 233 | 500 | | | Nonce verification recommended |
| #908 | Meow Gallery | 29 | 113 | 182 | 10k+ | | | Direct Query |
| #909 | Offload Media – Cloud Storage | 29 | 126 | 80 | 1k+ | | | unlink unlink |
| #910 | Page Restrict for WooCommerce | 29 | 579 | 374 | 700 | | | Text Domain Mismatch |
| #911 | Page View Count | 29 | 108 | 247 | 10k+ | | | Dynamic hook name |
| #912 | Post Timeline | 29 | 91 | 200 | 800 | | | Missing nonce verification |
| #913 | Post Views Counter | 29 | 179 | 398 | 200k+ | | | Non-prefixed hook name |
| #914 | Recipe Card Blocks Lite | 29 | 151 | 408 | 10k+ | | | Non-prefixed global variable |
| #915 | Relevant – Related, Featured, Latest, and Popular Posts by BestWebSoft | 29 | 487 | 262 | 800 | | | Text Domain Mismatch |
| #916 | SamedayCourier Shipping | 29 | 336 | 269 | 4k+ | | | Non Singular String Literal Domain |
| #917 | Security Ninja – WordPress Security & Firewall | 29 | 149 | 347 | 7k+ | | | Direct Query |
| #918 | Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce | 29 | 148 | 246 | 5k+ | | | Unsafe printing function |
| #919 | Slider by BestWebSoft | 29 | 478 | 336 | 400 | | | Text Domain Mismatch |
| #920 | Social Engine | 29 | 133 | 90 | 600 | | | Exception output is not escaped |
| #921 | ووسلام – همگام سازی ووکامرس و باسلام | 29 | 192 | 611 | 4k+ | | | Non-prefixed global variable |
| #922 | Themify – WooCommerce Product Filter | 29 | 643 | 145 | 20k+ | | | Output is not escaped |
| #923 | User Verification by PickPlugins | 29 | 41 | 314 | 5k+ | | | Request data is not unslashed |
| #924 | weMail – Email Marketing, Newsletter Builder & Email Automations for WooCommerce | 29 | 276 | 68 | 10k+ | | | Missing direct file access protection |
| #925 | WP-PostRatings | 29 | 425 | 384 | 30k+ | | | Output is not escaped |
| #926 | WPComplete | 29 | 383 | 333 | 1k+ | | | Output is not escaped |
| #927 | Xpro Addons — 140+ Widgets for Elementor | 29 | 27 | 826 | 30k+ | | | Non-prefixed global variable |
| #928 | Dynamic Pricing With Discount Rules for WooCommerce | 30 | 136 | 131 | 5k+ | | | Output is not escaped |
| #929 | Advanced Database Cleaner – Optimize & Clean Database to Speed Up Site Performance | 30 | 164 | 439 | 100k+ | | | Interpolated SQL is not prepared |
| #930 | PublishPress Blocks – Block Controls, Block Visibility, Block Permissions | 30 | 251 | 340 | 20k+ | | | Unsafe printing function |
| #931 | AI Product Tools – Bulk Product Content Generator & AI Toolkit for WooCommerce | 30 | 502 | 560 | 400 | | | SQL query is not prepared |
| #932 | ApplyOnline – Application Form Builder and Manager | 30 | 345 | 244 | 2k+ | | | Output is not escaped |
| #933 | aThemes Starter Sites | 30 | 262 | 195 | 40k+ | | | Text Domain Mismatch |
| #934 | AutoWP – AI Content Writer & Rewriter | 30 | 548 | 370 | 1k+ | | | Text Domain Mismatch |
| #935 | Sliding Cart for WooCommerce by FunnelKit – Skip Cart & Reach WooCommerce Checkout Faster | 30 | 306 | 434 | 30k+ | | | Non-prefixed global variable |
| #936 | Cryptocurrency Donation Box – Bitcoin & Crypto Donations | 30 | 334 | 284 | 500 | | | Output is not escaped |
| #937 | Custom Search by BestWebSoft – WordPress Custom Search Plugin | 30 | 454 | 228 | 900 | | | Text Domain Mismatch |
| #938 | Easy Affiliate Links | 30 | 186 | 198 | 7k+ | | | Missing direct file access protection |
| #939 | Epeken All Kurir for Woocommerce | 30 | 590 | 1,246 | 500 | | | Missing nonce verification |
| #940 | Eway Payment Gateway | 30 | 509 | 92 | 800 | | | Missing Translators Comment |
| #941 | PiWeb Export Customers Users & Guest customer to CSV for WooCommerce | 30 | 173 | 75 | 1k+ | | | Text Domain Mismatch |
| #942 | FormLift for Keap (Legacy) Web Forms | 30 | 162 | 315 | 400 | | | Request data is not unslashed |
| #943 | Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant | 30 | 264 | 221 | 4k+ | | | Non Singular String Literal Text |
| #944 | Import WooCommerce Suite for Products, Orders, Coupons, Reviews, and Customers | WP Ultimate CSV Importer | 30 | 80 | 434 | 4k+ | | | Interpolated SQL is not prepared |
| #945 | core plugin for kitestudio themes | 30 | 244 | 415 | 500 | | | Nonce verification recommended |
| #946 | Naver webmaster syndication v2 | 30 | 89 | 129 | 500 | | | Output is not escaped |
| #947 | PayU CommercePro Plugin | 30 | 95 | 270 | 7k+ | | | Text Domain Mismatch |
| #948 | گرویتی فرم فارسی | 30 | 205 | 157 | 20k+ | | | Text Domain Mismatch |
| #949 | Pixelgrade Assistant | 30 | 1,350 | 153 | 2k+ | | | Text Domain Mismatch |
| #950 | Sync Master Sheet – Product Sync with Google Sheet for WooCommerce | 30 | 136 | 300 | 400 | | | Non-prefixed global variable |