Top Admin WordPress Plugins
246 indexed plugins
Plugins
246
Active Installs
4m+
Average Score
63
Audited
246
Top Scores
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #51 | PWD WP Favicon | 95 | 3 | 8 | 800 | trademarked term | ||
| #52 | WP Approve User | 95 | 20 | 11 | 3k+ | Text Domain Mismatch | ||
| #53 | Admin Taxonomy Filter | 92 | 3 | 3 | 5k+ | Non-prefixed class | ||
| #54 | Expire Passwords | 92 | 7 | 2 | 500 | Missing Translators Comment | ||
| #55 | Hotlink File Prevention | 91 | 6 | 1 | 600 | file system operations is writable | ||
| #56 | Avantex Companion | 90 | 35 | 100 | 1k+ | Non-prefixed global variable | ||
| #57 | Daddy Plus | 90 | 35 | 552 | 8k+ | Non-prefixed global variable | ||
| #58 | Fusion Page Builder : Extension – Button | 90 | 4 | 5 | 400 | Input is not validated | ||
| #59 | Nav Menu Item Duplicator | 90 | 16 | 4 | 500 | wp function not compatible with requires wp | ||
| #60 | Three Column Screen Layout | 90 | 5 | 8 | 1k+ | Direct Query | ||
| #61 | WP PHP Version Display | 90 | 6 | 4 | 3k+ | trademarked term | ||
| #62 | Bottom Admin Toolbar | 89 | 5 | 1 | 1k+ | Output is not escaped | ||
| #63 | WP-Memory-Usage | 89 | 4 | 9 | 10k+ | Interpolated SQL is not prepared | ||
| #64 | Catch IDs | 88 | 16 | 20k+ | Non-prefixed global variable | |||
| #65 | WPC Admin Columns | 88 | 30 | 1k+ | Direct Query | |||
| #66 | Disable User Password Reset Admin Notifications | 87 | 6 | 2 | 1k+ | Nonce verification recommended | ||
| #67 | Marin Companion | 87 | 19 | 66 | 500 | Non-prefixed global variable | ||
| #68 | WP Dashboard Messages | 87 | 9 | 11 | 400 | Text Domain Mismatch | ||
| #69 | Featured image to All-Posts | 86 | 6 | 5 | 400 | Nonce verification recommended | ||
| #70 | Admin Notice | 86 | 7 | 1 | 600 | Output is not escaped | ||
| #71 | Add post thumbnail to wp-admin list view | 86 | 5 | 5 | 400 | Nonce verification recommended | ||
| #72 | Update Notifier | 86 | 8 | 1 | 700 | Output is not escaped | ||
| #73 | Auto Subpage Menu | 85 | 5 | 6 | 800 | Database parameter is not escaped | ||
| #74 | Marquee Running Text | 85 | 11 | 7 | 6k+ | Missing direct file access protection | ||
| #75 | Posts Character Count Admin | 85 | 9 | 0 | 1k+ | Output is not escaped | ||
| #76 | WP Revisions Control | 85 | 9 | 6 | 40k+ | wp function not compatible with requires wp | ||
| #77 | Floating Publish Button | 84 | 5 | 4 | 1k+ | Unsafe printing function | ||
| #78 | Admin in English | 83 | 4 | 7 | 1k+ | Input is not sanitized | ||
| #79 | Featured Image Column | 83 | 12 | 2 | 2k+ | Output is not escaped | ||
| #80 | Make Disable Admin Email Verification Prompt| Aims Infosoft | 83 | 10 | 4 | 2k+ | Text Domain Mismatch | ||
| #81 | Admin Collapse Subpages | 82 | 4 | 12 | 4k+ | Nonce verification recommended | ||
| #82 | Tabs in Post Editor | 82 | 4 | 7 | 500 | Input is not validated | ||
| #83 | Require Login | 81 | 9 | 12 | 500 | Non-prefixed function | ||
| #84 | WP Updates Settings | 79 | 7 | 8 | 900 | Unsafe printing function | ||
| #85 | Run SQL Query | 78 | 13 | 8 | 600 | Non-prefixed global variable | ||
| #86 | Username | 77 | 5 | 8 | 700 | Deprecated function: screen_icon | ||
| #87 | Admin Bookmarks | 76 | 30 | 4 | 500 | Text Domain Mismatch | ||
| #88 | WEN Featured Image | 76 | 1 | 18 | 3k+ | Input is not validated | ||
| #89 | Admin Locale | 75 | 12 | 10 | 6k+ | Missing Arg Domain | ||
| #90 | Simple Taxonomy Ordering | 75 | 7 | 10 | 10k+ | Direct Query | ||
| #91 | WP Hide Dashboard | 75 | 6 | 10 | 2k+ | trademarked term | ||
| #92 | Clean WP Admin Menu | 74 | 19 | 13 | 600 | Non Singular String Literal Domain | ||
| #93 | WP Revisions Limit | 74 | 16 | 14 | 800 | Missing Arg Domain | ||
| #94 | Chap Secure Password Login | 72 | 13 | 7 | 600 | Input is not validated | ||
| #95 | Root Relative URLs | 72 | 9 | 10 | 6k+ | Input is not sanitized | ||
| #96 | Change Administrator Email Address | 71 | 12 | 9 | 700 | Output is not escaped | ||
| #97 | WPS Notice Center | 71 | 12 | 7 | 3k+ | Unsafe printing function | ||
| #98 | Purchased Items Column for WooCommerce Orders | 70 | 10 | 8 | 800 | Output is not escaped | ||
| #99 | SubHeading | 70 | 22 | 13 | 1k+ | Non Singular String Literal Domain | ||
| #100 | Automatic Domain Changer | 69 | 37 | 14 | 10k+ | Text Domain Mismatch |