You can follow the recent results of the Plugin Security Scorecard through the tool's Bluesky account.

• WC Expired Products     D+
• Replace Google Fonts with Bunny Fonts     C
• Roles & Capabilities     C+
• GoodBarber     C+
• FeedCache Pipes     C
• Strong Testimonials     C+
• ExactMetrics     F
• WPFront User Role Editor     C+
• Media Sync     B
• WPBakery Page Builder Addons by Livemesh     C
• HTTP Headers     B
• Podlove Podcast Publisher     D+
• WPScan     F
• YourChannel     C+
• Lazy Load     D+
• Event Tickets and Registration     C
• Podlove Web Player     C+
• Embed Any Document     B
• Advanced Custom Fields: Gravity Forms Add-on     C
• WPFront Scroll Top     B
• Ultimate Member - reCAPTCHA     B
• The SEO Framework     A
• Twiogle Twitter Commenter     D+
• Invisible reCaptcha     D+
• reCaptcha by BestWebSoft     C+
• String locator     C+
• Font Awesome     B
• Easy Accordion     C+
• Termageddon + Usercentrics     B
• DarkOnyx Plugin for WordPress     D
• WP Google Review Slider     C+
• Plugin for Google Reviews     B
• Klarna for WooCommerce     B
• Ajax Search Lite     D+
• LottieFiles     C+
• Ad Inserter     F
• Content Slider Block     B
• Speed Optimizer     C+
• Security Optimizer     F
• WP Mobile Menu     C
• GDPR Cookie Compliance     C
• Column Shortcodes     C
• Better Click To Tweet     C
• Kilroy was here     C+
• Filester     F
• Starter Templates     F
• Genesis Custom Blocks     D
• autometa's CATAG     D+
• Ignore Code     C
• JavaScript Obfuscator     B
• Ultimate Searchable Accordion Lite     B
• WP Editarea     C
• Content Views     B
• Genesis Blocks     D+
• Syntax Highlight     C
• REST API support for Crayon Syntax Highlighter     C
• WP-SynHighlight     D
• Syntax Highlighter++     C
• Code Snippets in Comments     D+
• Code Syntax Block     C+
• CC-Syntax-Highlight     C
• Post Editor Zen Coding     C
• WP User Frontend     D
• MP3 Audio Player     D
• Xagio SEO     C+
• Price Changer For WooCommerce     B
• Scouting OpenID Connect     B
• Security Ninja     F
• NinjaFirewall (WP Edition)     D
• Redis Object Cache     C
• WooCommerce     F
• WP YouTube Lyte     D+
• WP Performance Pack     B
• Hostinger Tools     B
• WP Cloud Edit     C
• All-in-One Video Gallery     C
• SupportCandy     C
• Themify - WooCommerce Product Filter     C
• MouseWheel Smooth Scroll     B
• Ads.txt Manager     B
• Best Youtube Video LazyLoad     C+
• Lazy Embed     C+
• YouTube Embed     C
• Embed Plus for YouTube Gallery, Livestream and Lazy Loading with Facades     D+
• WPCode     F
• Newsletter, SMTP, Email marketing and Subscribe forms by Brevo (formely Sendinblue)     C+
• Powered Cache     C
• FunnelKit Automations     D+
• Payment Plugins for PayPal WooCommerce     B
• Widget Options     C+
• Sliding Cart for WooCommerce by FunnelKit     C
• WPForms Lite     F
• Logo Slider and Showcase     C
• iZooto     D
• Rate My Post     B
• OttoKit     F
• Menu Icons by ThemeIsle     C
• Cross Domain Tracker for AffiliateWP     F
• ThumbPress     C+
• 3D FlipBook     B

Check Another Plugin

Choose WordPress plugin available in the Plugin Directory to check by searching on its name or slug:

Choose a category to see a comparison of all the WordPress plugins already graded from that category:

Choose ClassicPress plugin to check by searching on its name or slug:

Check Plugin Not in WordPress Plugin Directory

Subscribers of our service can submit ZIP files of plugins that are not in the WordPress Plugin Directory to have them checked. (Not all issues can be checked for with uploaded plugins, as they require data not available with just the plugin's files.) You can sign up for the service for free here. For existing subscribers, once you are logged in to your account, return to this page to access that functionality.

The results of these gradings will not be stored.

About the Scorecard

The Plugin Security Scorecard grades plugins' handling of security based on data coming from the Plugin Vulnerabilities service, checking over the contents of the plugin, the WordPress.org API, and data generated specifically for the tool. It provides a useful, but incomplete, understanding of the security posture of the plugin and its developer. All the issues identified are ones that the developer of the plugin has the ability to address to get the grade of the plugin up to an A+.

Grades are calculated based on issues with any of the following:

• Plugins known to be vulnerable
• Plugin developers with track records of improperly handling security problems
• Security issues in the plugin that can be detected in an automated fashion
• Issues with the developer's developerment processes that suggest that their could be problems with security
• Plugins making unsupported, misleading, and false claims about their handling of security and the handling of security with WordPress

We are working to expand and refine the tools' ability to provide a good measure of plugins' security status. If you are aware of an additional security concern with this plugin that isn't represented here, please contact us. Other feedback on the tool is also welcome.

If you want a comprehensive understanding of the security of the plugin, a well-done security review is really needed to provide that.