Plugin Vulnerabilities

Adds warning message to WordPress Plugin Directory pages when plugins are from developer we have released security advisories for.

Users420

Rating5.0

Reviews1

Manifest versionV3

7-day growth+9

7-day growth rate+2.19%

Preview mode

Upgrade to view the full paid extension report

Public basics remain visible. Paid access adds payment clues, related extensions, and more review detail.

7-day previewPayment cluesRelated extensions

Preview

Plugin Vulnerabilities Media preview

1 assets

Trend

7-day user preview

Free accounts only see a short preview for paid extensions.

User Growth Over Time

Rating trend

7-day rating preview

The rating curve is shortened in preview mode.

30-day rating change

Start

5.00

Latest

5.00

30-day rating change

0.00

2026年5月29日2026年6月4日

Growth overview

Daily, weekly, and monthly growth

Compare 1-day, 7-day, and 30-day net growth and growth rate.

1-day growthGrowing

+4+0.96%

7-day growthGrowing

+9+2.19%

30-day growthGrowing

+5+1.2%

Technical snapshot

Version, languages, and crawl freshness

Review publication date, version, supported languages, and crawl timestamps.

Version1.0.32

ManifestV3

Size9.98KiB

Languages1English (United States)

Published--

Store updated--

Last crawled--

Overview

Product summary

Review the store description, core capabilities, and common use cases.

One of the little understood realities of security issues with WordPress plugins is that the insecurity of them is not evenly spread across those plugins. Instead, many developers are properly securing their plugins and others get them properly secured when alerted they haven’t done that, while other plugin developers either are unable or unwilling to properly secure their plugins. With the latter group, among the issues we have seen, are developers who have introduced new serious vulnerabilities that are substantially similar to vulnerabilities that they know have been exploited in their plugins.

In situations where we become aware of developers who have shown that inability or unwillingness to properly secure their plugin, we are releasing advisories to warn customers of our service and the wider WordPress community of the risk of utilizing those developers' plugins. This extension adds a notice on the pages of the WordPress Plugin Directory for the plugins from those developers.

Reviews

Recent review snapshot

Inspect the latest comments and rating distribution.

Locked

More reviews require paid access

The rating summary remains visible. Paid access includes more synced review text.

Review textRating distributionRecent feedback

Unlock more reviews

Similar and related extensions

Review related products from the Chrome Web Store detail page.

Locked

Related paid products require paid access

Upgrade to compare similar products and adjacent extensions.

Similar productsAdjacent extensionsComparison

Unlock related products

Monetization

Locked

Payment clues require paid access

The paid status is visible here. Upgrade to view the payment platform and supporting evidence.

Unlock monetization clues

Permission risk

Low-risk permissions

This estimate uses declared permissions and host permissions to assess access scope and sensitivity.

未命中敏感权限或广域站点访问规则

Publisher

White Fir Design

Independent publisher

Email: [email protected]
Phone: --
Address: --

Public contact fields are shown above. Developer portfolio pages are available on paid accounts.

View developer portfolio

Permissions

Locked

Permission list requires paid access

The risk summary remains visible. Paid access includes declared permissions and host access details.

Unlock permission inventory

Host access

Paid access unlocks the declared host-access scope.