| #301 | Quick Featured Images | 32 | 436 | 323 | 50k+ | | | Non-prefixed global variable |
| #302 | Restrict Usernames Emails Characters | 32 | 327 | 367 | 1k+ | | | Output is not escaped |
| #303 | UiCore Blocks – Free WordPress Gutenberg Blocks | 32 | 59 | 387 | 500 | | | Non-prefixed global variable |
| #304 | Management App for WooCommerce – Order notifications, Order management, Lead management, Uptime Monitoring | 32 | 196 | 160 | 900 | | | Text Domain Mismatch |
| #305 | MaxiBlocks Builder | 17,000+ Design Assets, Patterns, Icons & Starter Sites | 33 | 2 | 503 | 800 | | | Non-prefixed function |
| #306 | Notification Master – Real-Time WordPress Notifications With Email, SMS, Webhooks & More | 33 | 293 | 215 | 1k+ | | | Text Domain Mismatch |
| #307 | Spin Wheel – Interactive spinning wheel that offers coupons | 33 | 680 | 313 | 500 | | | Unsafe printing function |
| #308 | Simple Sticky Add To Cart For WooCommerce | 33 | 401 | 70 | 900 | | | Text Domain Mismatch |
| #309 | FV Gravatar Cache | 34 | 50 | 42 | 700 | | | Output is not escaped |
| #310 | Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin | 34 | 36 | 459 | 3k+ | | | Input is not sanitized |
| #311 | Child Theme Creator by Orbisius | 34 | 86 | 39 | 10k+ | | | Output is not escaped |
| #312 | PW WooCommerce Bulk Edit | 34 | 219 | 149 | 20k+ | | | Unsafe printing function |
| #313 | Software License Manager | 34 | 69 | 289 | 900 | | | Nonce verification recommended |
| #314 | WP Maps – Google Maps,OpenStreetMap,Mapbox,Store Locator,Listing,Directory & Filters | 34 | 219 | 453 | 60k+ | | | wp function not compatible with requires wp |
| #315 | Zero Spam for WordPress | 34 | 79 | 393 | 20k+ | | | Non-prefixed global variable |
| #316 | AfterSalesPro Plugin | 35 | 24 | 111 | 400 | | | Nonce verification recommended |
| #317 | SOOZ – AI for SEO – Bulk Generate Focus Keyphrases, Metadata, Alt Text (SEO Autopilot) | 35 | 44 | 394 | 2k+ | | | Nonce verification recommended |
| #318 | Akismet Anti-spam: Spam Protection | 35 | 33 | 99 | 6m+ | | | Non-prefixed global variable |
| #319 | Automatic Internal Links for SEO by Pagup | 35 | 34 | 215 | 1k+ | | | error log error log |
| #320 | BotWriter – AI Writer & SEO Content Generator | 35 | 16 | 503 | 3k+ | | | Direct Query |
| #321 | CF7 Views – Complete Entry Management for Contact Form 7 | 35 | 172 | 181 | 1k+ | | | Output is not escaped |
| #322 | CompressX — AVIF & WebP Converter, Media Replacement | 35 | 26 | 423 | 40k+ | | | Missing nonce verification |
| #323 | Core Framework | 35 | 70 | 62 | 10k+ | | | Text Domain Mismatch |
| #324 | DesignSetGo | 35 | 20 | 313 | 4k+ | | | Non-prefixed global variable |
| #325 | Easy Social Icons | 35 | 182 | 158 | 20k+ | | | Output is not escaped |
| #326 | Export Featured Images | 35 | 176 | 67 | 1k+ | | | Output is not escaped |
| #327 | HivePress – Business Directory, Listings & Classified Ads Plugin | 35 | 38 | 180 | 10k+ | | | Direct Query |
| #328 | Kirki – Freeform Page Builder, Website Builder & Customizer | 35 | 1 | 773 | 500k+ | | | Nonce verification recommended |
| #329 | Recurio – Ultimate Subscription for WooCommerce | 35 | 34 | 304 | 1k+ | | | Direct Query |
| #330 | Related Posts for WordPress | 35 | 207 | 180 | 10k+ | | | Output is not escaped |
| #331 | RTMKit | 35 | 5 | 378 | 50k+ | | | Non-prefixed global variable |
| #332 | Product Feed for Google Shopping, Microsoft Advertising and 40+ Channels for WooCommerce Merchant | 35 | 83 | 76 | 2k+ | | | Output is not escaped |
| #333 | W4 Post List | 35 | 50 | 138 | 3k+ | | | Non-prefixed global variable |
| #334 | Access Areas for WordPress | 35 | 17 | 95 | 400 | | | Direct Query |
| #335 | Bit Form – Contact Form, Payment Forms, Multi Step Forms, Calculator & Custom Form Builder | 36 | 3 | 321 | 10k+ | | | Nonce verification recommended |
| #336 | Carousel Horizontal Posts Content Slider | 36 | 271 | 59 | 2k+ | | | Text Domain Mismatch |
| #337 | Desktop Mode | 36 | 1 | 579 | 2k+ | | | Direct Query |
| #338 | WP CTA – Call Now Button, Sticky Button & Call to Action Builder | 36 | 1 | 433 | 2k+ | | | Non-prefixed global variable |
| #339 | Enhanced Media Library | 36 | 361 | 117 | 60k+ | | | Unsafe printing function |
| #340 | g-FFL Cockpit | 36 | 17 | 220 | 500 | | | Direct Query |
| #341 | GetPaid > Wallet | 36 | 149 | 174 | 700 | | | Text Domain Mismatch |
| #342 | HTML Forms – Simple WordPress Forms Plugin | 36 | 231 | 166 | 10k+ | | | Output is not escaped |
| #343 | HTTP Requests Manager | 36 | 98 | 90 | 1k+ | | | Output is not escaped |
| #344 | News Manager | 36 | 134 | 57 | 600 | | | Output is not escaped |
| #345 | Post Views Stats Counter | 36 | 142 | 241 | 700 | | | Non-prefixed global variable |
| #346 | افزونه رسمی ترب | 36 | 42 | 86 | 20k+ | | | Exception output is not escaped |
| #347 | Better Find and Replace – AI-Powered Suggestions | 36 | 67 | 129 | 40k+ | | | Missing direct file access protection |
| #348 | SMTP for SendGrid – YaySMTP | 36 | 27 | 96 | 1k+ | | | Non-prefixed global variable |
| #349 | Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. | 36 | 50 | 105 | 400 | | | Direct Query |
| #350 | Zoho ZeptoMail | 36 | 32 | 110 | 5k+ | | | Request data is not unslashed |
