Most Installed Theme WordPress Plugins
47 indexed plugins
Plugins
47
Active Installs
797k+
Average Score
59
Audited
47
Most Installed
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #1 | Child Theme Configurator | 32 | 442 | 267 | 300k+ | Unsafe printing function | ||
| #2 | Easy Theme and Plugin Upgrades | 94 | 29 | 20 | 70k+ | Discouraged PHP function | ||
| #3 | All In One Favicon | 34 | 214 | 62 | 60k+ | Output is not escaped | ||
| #4 | Theme Editor | 22 | 798 | 685 | 50k+ | Output is not escaped | ||
| #5 | Cryout Serious Theme Settings | 40 | 332 | 51 | 40k+ | Output is not escaped | ||
| #6 | Disable auto-update Email Notifications | 97 | 3 | 2 | 30k+ | Missing direct file access protection | ||
| #7 | WP Updates Notifier | 35 | 23 | 4 | 30k+ | Missing Translators Comment | ||
| #8 | Create Block Theme | 35 | 43 | 5 | 20k+ | unlink unlink | ||
| #9 | Multi Device Switcher | 98 | 2 | 9 | 20k+ | Non-prefixed function | ||
| #10 | WP Child Theme Generator | 42 | 35 | 66 | 20k+ | Request data is not unslashed | ||
| #11 | Canvas | 89 | 19 | 112 | 10k+ | Non-prefixed global variable | ||
| #12 | Custom Post Template | 37 | 48 | 30 | 10k+ | Output is not escaped | ||
| #13 | Disable All WordPress Updates | 98 | 4 | 6 | 10k+ | trademarked term | ||
| #14 | Flash Toolkit | 34 | 159 | 242 | 10k+ | Non-prefixed global variable | ||
| #15 | HookMeUp for WooCommerce | 35 | 59 | 29 | 10k+ | Output is not escaped | ||
| #16 | Multiple Themes | 41 | 112 | 41 | 10k+ | Output is not escaped | ||
| #17 | Generate Child Theme | 100 | 1 | 0 | 9k+ | Missing direct file access protection | ||
| #18 | ShowID for Post/Page/Category/Tag/Comment | 97 | 5 | 1 | 8k+ | Missing direct file access protection | ||
| #19 | TJ Custom CSS | 69 | 18 | 10 | 8k+ | Output is not escaped | ||
| #20 | Child Themify | 90 | 10 | 4 | 7k+ | Missing direct file access protection | ||
| #21 | Gantry 5 Framework | 100 | 0 | 7k+ | No open findings | |||
| #22 | Theme Switcha – Easily Switch Themes for Development and Testing | 43 | 42 | 53 | 7k+ | Output is not escaped | ||
| #23 | Theme Test Drive | 43 | 39 | 16 | 7k+ | Output is not escaped | ||
| #24 | WP Theme Test | 40 | 21 | 39 | 7k+ | Input is not sanitized | ||
| #25 | WPS Child Theme Generator | 39 | 111 | 85 | 6k+ | Unsafe printing function | ||
| #26 | Shopkeeper Extender | 35 | 14 | 26 | 5k+ | Missing Version | ||
| #27 | Download Theme | 64 | 18 | 20 | 4k+ | wp function not compatible with requires wp | ||
| #28 | Custom Category Templates | 54 | 11 | 11 | 3k+ | Unsafe printing function | ||
| #29 | Twenty Eleven Theme Extensions | 38 | 35 | 30 | 3k+ | Output is not escaped | ||
| #30 | Browser Theme Color | 83 | 4 | 2 | 2k+ | Output is not escaped | ||
| #31 | Force Reinstall | 35 | 118 | 34 | 2k+ | Output is not escaped | ||
| #32 | Custom Content Width | 86 | 8 | 0 | 1k+ | Text Domain Mismatch | ||
| #33 | Custom CSS Manager | 37 | 55 | 20 | 1k+ | Output is not escaped | ||
| #34 | Di Themes Demo Site Importer | 29 | 343 | 183 | 1k+ | Text Domain Mismatch | ||
| #35 | Windows Compatibility Fix | 35 | 13 | 6 | 1k+ | Plugin Directory Write | ||
| #36 | Material Admin Theme | 98 | 2 | 3 | 1k+ | Missing Version | ||
| #37 | Quick Child Theme Generator | 40 | 22 | 74 | 900 | Request data is not unslashed | ||
| #38 | WP Theme Changelogs | 68 | 13 | 18 | 900 | Nonce verification recommended | ||
| #39 | Child Theme Check | 100 | 1 | 800 | Non-prefixed class | |||
| #40 | PWD WP Favicon | 95 | 3 | 8 | 800 | trademarked term | ||
| #41 | Widgets Control | 40 | 92 | 47 | 800 | Output is not escaped | ||
| #42 | Spacious Toolkit | 35 | 48 | 94 | 700 | Non-prefixed global variable | ||
| #43 | Ample Themes Demo Importer | 88 | 135 | 13 | 600 | Text Domain Mismatch | ||
| #44 | CSS | 89 | 10 | 1 | 500 | Missing Arg Domain | ||
| #45 | Theme Inspector | 73 | 23 | 7 | 400 | Output is not escaped | ||
| #46 | Theme Toolkit | 40 | 53 | 14 | 400 | Output is not escaped | ||
| #47 | WP Theme Optimizer | 33 | 388 | 80 | 400 | Output is not escaped |
