vulnerable-plugin-checker

Description

This plugin has been closed as of June 25, 2026 and is not available for download. This closure is permanent. Reason: Author Request.

Reviews

May 21, 2018
It seems that this plugin is producing a whole lot false positive as it does not evaluate base64 entries which often get used i.e. by nearly all 100 WPMUDEV plugins. “VPC: One or more plugins currently installed have known vulnerabilities with their current version. I suggest updating each vulnerable plugin if an update is available” Many other security scanners incl Sucuri have no problem with that! And 5-star ratings by its own developers does not mean that this plugin does anything. I would suggest leaving the rating of your plugins to other people! Kind regards Toremo
January 28, 2018 1 reply
The plugin is very useful to see which plugins have known vulnerabilities. On WordPress multisite, however, it displays this information in the site admin backends instead of the network admin backend. That makes it a bit less useful, because the network admins cannot see the information when they are in the network admin backend.
December 9, 2016
I can say it has made me feel safer when hosting sites. I get alerted before a hack takes place as I have dealt with hacked sites for far too long. I haven’t dealt with a hacked site running my plugin. Plugin vulnerabilities are the easiest way for a hacker to get into your site/server.
September 3, 2016
Great plugin. Works just as expected with no additional setup needed
Read all 8 reviews

Contributors & Developers

“Vulnerable Plugin Checker” is open source software. The following people have contributed to this plugin.

Contributors