WordPress Security WordPress Plugins with Most Issues
13 indexed plugins
Plugins
13
Active Installs
265k+
Average Score
60
Audited
13
Most Issues
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #1 | SecuPress with Simple SSL – Simple and Performant Security | 23 | 1,696 | 1,590 | 40k+ | Non-prefixed global variable | ||
| #2 | SP Move Login | 26 | 881 | 215 | 6k+ | Text Domain Mismatch | ||
| #3 | Quttera ThreatSign – Web Malware Scanner for WordPress | 25 | 334 | 471 | 10k+ | Non-prefixed global variable | ||
| #4 | WebDefender Security – Protection & AntiSpam | 70 | 176 | 61 | 1k+ | wp function not compatible with requires wp | ||
| #5 | Injection Guard | 36 | 87 | 45 | 1k+ | Unsafe printing function | ||
| #6 | MalCare WordPress Security Plugin – Malware Scanner, Cleaner, Security Firewall | 82 | 55 | 22 | 200k+ | Missing direct file access protection | ||
| #7 | SiteLock Security – WP Hardening, Login Security & Malware Scans | 89 | 44 | 9 | 1k+ | Text Domain Mismatch | ||
| #8 | SX User Name Security | 46 | 42 | 9 | 900 | Output is not escaped | ||
| #9 | Easy Basic Authentication – Add basic auth to site or admin area | 46 | 14 | 28 | 600 | Input is not sanitized | ||
| #10 | Protected Posts Logout Button | 57 | 10 | 20 | 1k+ | Input is not sanitized | ||
| #11 | NETSENSAI Shield | 83 | 10 | 16 | 1k+ | Nonce verification recommended | ||
| #12 | HTTP Security Header | 99 | 1 | 1 | 1k+ | Discouraged text-domain loading | ||
| #13 | Simple Disable XML-RPC | Reduce Brute Force & DDOS Attacks | 99 | 1 | 1 | 1k+ | mismatched plugin name |
