This plugin hasn’t been updated in over 2 years. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.



BadPass helps to promote better password selection by warning users when they are using a common password. This is
done by comparing the logged in user’s password hash against a list of over 500 commonly used and easy to guess

You might also be interested in the BadPass Firefox plugin.


  • The warning when the WordPress 3.1 admin bar isn't enabled
  • The warning displayed by BadPass-WP when the logged in user is using a common and easy to guess password.



  • Improved integration to perform password checks when the user profile change password form and the WordPress 3.1+ password reset form is submitted
  • Added additional checks to determine if entered passwords match the user’s login name
  • Done some refactoring of source code

1.11, 1.12

  • Minor documentation fixes!


  • Placed warning bar at the top of the page when the WordPress admin bar is disabled
  • Tested in WordPress 3.0 and updated minimum required version to reflect this


  • Initial release

Contributors & Developers

This is open source software. The following people have contributed to this plugin.


Browse the code