Upload WordPress Plugins with Most Issues
35 indexed plugins
Plugins
35
Active Installs
375k+
Average Score
71
Audited
35
Most Issues
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #1 | Iptanus File Upload | 24 | 509 | 1,325 | 10k+ | Non-prefixed function | ||
| #2 | Post Lists View Custom | 33 | 462 | 150 | 2k+ | Missing Arg Domain | ||
| #3 | Shared Files – File Upload & Download Manager | 39 | 5 | 184 | 4k+ | Nonce verification recommended | ||
| #4 | WP GIF Uploader | 33 | 117 | 44 | 1k+ | Text Domain Mismatch | ||
| #5 | Media Deduper | 36 | 60 | 99 | 9k+ | Missing Arg Domain | ||
| #6 | Pro Mime Types – Manage file media types | 80 | 55 | 98 | 2k+ | Non-prefixed global variable | ||
| #7 | Drag and Drop Multiple File Upload for WooCommerce | 49 | 114 | 29 | 5k+ | Text Domain Mismatch | ||
| #8 | Drag and Drop Multiple File Upload for Contact Form 7 | 36 | 82 | 36 | 60k+ | wp function not compatible with requires wp | ||
| #9 | Auto Upload Images | 40 | 62 | 13 | 20k+ | Unsafe printing function | ||
| #10 | WP Upload Restriction | 86 | 59 | 16 | 2k+ | Text Domain Mismatch | ||
| #11 | Custom Upload Dir | 55 | 63 | 7 | 5k+ | Missing Arg Domain | ||
| #12 | Microsoft Azure Storage for WordPress | 86 | 25 | 26 | 2k+ | Missing Translators Comment | ||
| #13 | Easy Theme and Plugin Upgrades | 94 | 29 | 20 | 70k+ | Discouraged PHP function | ||
| #14 | Bulk Change Media Author | 42 | 25 | 20 | 2k+ | Unsafe printing function | ||
| #15 | Thumbnail Crop Position | 64 | 43 | 1 | 2k+ | Output is not escaped | ||
| #16 | WP Original Media Path | 69 | 35 | 3 | 6k+ | Non Singular String Literal Domain | ||
| #17 | WP Extra File Types | 43 | 11 | 26 | 40k+ | Request data is not unslashed | ||
| #18 | Plus WebP or AVIF | 98 | 24 | 5k+ | Non-prefixed global variable | |||
| #19 | Canvas Image Resize | 75 | 19 | 1 | 1k+ | Output is not escaped | ||
| #20 | WEN Featured Image | 76 | 1 | 18 | 3k+ | Input is not validated | ||
| #21 | GD bbPress Attachments | 35 | 2 | 10 | 6k+ | wp redirect wp redirect | ||
| #22 | File Upload Types by WPForms | 98 | 2 | 9 | 30k+ | Non-prefixed function | ||
| #23 | Max upload filesize | 83 | 3 | 8 | 9k+ | Input is not validated | ||
| #24 | Upload SVG | 84 | 3 | 8 | 1k+ | Non-prefixed global variable | ||
| #25 | Upload Url and Path Enabler | 83 | 10 | 1 | 2k+ | Missing Arg Domain | ||
| #26 | Clean Image Filenames | 82 | 6 | 1 | 30k+ | Output is not escaped | ||
| #27 | Clean Filenames | 94 | 2 | 4 | 3k+ | Missing nonce verification | ||
| #28 | Allow ePUB and MOBI formats upload | 98 | 2 | 2 | 2k+ | Missing direct file access protection | ||
| #29 | Disable "BIG Image" Threshold | 98 | 3 | 1 | 10k+ | Missing direct file access protection | ||
| #30 | Enable vCard Upload | 97 | 3 | 1 | 2k+ | outdated tested upto header | ||
| #31 | Enable virtual card upload – vcf,vcard | 98 | 2 | 2 | 7k+ | mismatched plugin name | ||
| #32 | Make Filename Lowercase | 98 | 3 | 1 | 1k+ | Missing direct file access protection | ||
| #33 | Add From Server Reloaded | 99 | 2 | 1 | 2k+ | Missing direct file access protection | ||
| #34 | Disable Real MIME Check | 98 | 3 | 0 | 10k+ | Missing direct file access protection | ||
| #35 | Filenames to latin | 98 | 2 | 1 | 9k+ | Missing direct file access protection |
