Know About WordPress Vulnerabilities Before They're Public

FireWP detects security vulnerabilities in WordPress plugins before CVEs are published. Our custom code analysis catches threats early, giving you time to protect your sites.

Get FireWP Plugin Browse Database

How It Works

Our proactive approach finds vulnerabilities before attackers do

Step 1

Continuous Scanning

We scan 43,000+ WordPress plugins daily using our proprietary SAST engine

Step 2

Early Detection

Our scanner finds vulnerabilities before CVEs exist or are publicly disclosed

Step 3

Instant Alerts

Get notified immediately with mitigation steps to secure your sites

Features

Everything you need to stay ahead of WordPress security threats

Pre-CVE Detection

Find vulnerabilities before they appear in public databases

Custom SAST Scanner

Proprietary static analysis built specifically for WordPress

Email & Dashboard Alerts

Get notified your way when vulnerabilities affect your plugins

Mitigation Guidance

Actionable recommendations to secure your site immediately

Plugin Compatibility

Check plugin security status before installing on your site

Regular Updates

Database continuously updated with new scans and findings

Our Coverage

Comprehensive monitoring of the WordPress plugin ecosystem

1,385

Plugins Monitored

15,163

Vulnerabilities Detected

1,395

Total Scans

Findings by Severity

Critical

2,207

High

3,038

Medium

3,179

Low

6,739

Top Vulnerability Types

WP051Missing Text Domain

low

5,144

WP060Missing Capability Check in Admin Handler

medium

1,710

WP020AJAX Handler Without CSRF Protection

high

1,547

WP001SQL Injection via $wpdb

critical

1,005

WP260Use of extract()

low

778

WP052HTTP Request Without Timeout

low

675

WP010Cross-Site Scripting (XSS)

medium

579

WP060Missing Nonce Verification in AJAX Handler

high

508

WP060Missing Authorization for Sensitive Operation

critical

486

WP280Insecure Random: array_rand()

high

278

Last updated: 1/18/2026, 7:37:50 PM

Recently Scanned Plugins

Explore the latest security scan results from our database

Social Addons for Elementor (Lite)

v1.2.1 · Jan 19, 2026, 11:20 PM

Term Description: Rich Text Editor (Powered by TinyMCE) for WooCommerce

v1.2.0 · Jan 19, 2026, 11:20 PM

SDStudio Google Reviews for portfolio

v1.0.2 · Jan 19, 2026, 11:20 PM

Podcast Subscribe Buttons

v1.5.5 · Jan 19, 2026, 11:20 PM

Custom Advertisement Management

v1.0 · Jan 19, 2026, 11:20 PM

v1.1.23 · Jan 19, 2026, 11:20 PM

Disable Drop Cap

v2.1.9 · Jan 19, 2026, 11:20 PM

v1.0 · Jan 19, 2026, 11:20 PM

Frontend Reset Password

v1.2.4 · Jan 19, 2026, 11:20 PM

v1.1 · Jan 19, 2026, 11:20 PM

StreamWeasels YouTube Integration

v1.4.1 · Jan 19, 2026, 11:20 PM

Incogneato Anonymous Box

v1.0 · Jan 19, 2026, 11:20 PM

Backend Payments for WooCommerce

v2.8.9 · Jan 19, 2026, 11:20 PM

bbPress Mentions Email Notifications

v1.0.3 · Jan 19, 2026, 11:20 PM

Bloglovin Widget

v1.3.0 · Jan 19, 2026, 11:20 PM

Turnkey bbPress by WeaverTheme

v1.7.1 · Jan 19, 2026, 11:20 PM

v1.1.2 · Jan 19, 2026, 11:20 PM

Universal Analytics

v1.3.2 · Jan 19, 2026, 11:20 PM

Simple Woocommerce Favourites

v2.1.5 · Jan 19, 2026, 11:20 PM

Constant Contact Forms

v2.16.0 · Jan 19, 2026, 11:20 PM

Google Docs Shortcode

v0.4 · Jan 19, 2026, 11:20 PM

LH Recover Password

v1.13 · Jan 19, 2026, 11:20 PM

v1.0.0 · Jan 19, 2026, 11:20 PM

WP Chase Payment

v1.2 · Jan 19, 2026, 11:20 PM

Alt Magic: AI Powered Alt Texts & Image Renaming

v1.5.3 · Jan 19, 2026, 11:20 PM

v0.1.0 · Jan 19, 2026, 11:20 PM

MB ImageChimp RSS Feed Enhancer

v1.0 · Jan 19, 2026, 11:20 PM

Easy Recent Posts

v15.01 · Jan 19, 2026, 11:20 PM

Menubar Widgets

v0.1.0 · Jan 19, 2026, 11:20 PM

Marketing 360® Payments for WooCommerce

v1.0.8 · Jan 19, 2026, 11:20 PM

v1.11 · Jan 19, 2026, 11:20 PM

v3.2 · Jan 19, 2026, 11:20 PM

Ultimate Newsletter

v1.2.0 · Jan 19, 2026, 11:20 PM

v1.2.0 · Jan 19, 2026, 11:20 PM

Divine SIP Calculator

v1.0.3 · Jan 19, 2026, 11:20 PM

Weight Based Shipping for WooCommerce

v6.13.0 · Jan 19, 2026, 11:20 PM

Email Marketing Services Integration

v1.2.2 · Jan 19, 2026, 11:20 PM

SWPanel AI Builder

v1.0.2 · Jan 19, 2026, 11:20 PM

RSS FEED anywhere

v1.4 · Jan 19, 2026, 11:20 PM

Accept 2Checkout Payments Using Contact Form 7

v1.7 · Jan 19, 2026, 11:20 PM

Rate limiting UI for WooCommerce

v1.2 · Jan 19, 2026, 11:20 PM

v1.0 · Jan 19, 2026, 11:20 PM

Z.com Easy WP Migrator

v1.1.5 · Jan 19, 2026, 11:20 PM

Tryly.ai Virtual Try-On for WooCommerce

v2.0.3 · Jan 19, 2026, 11:20 PM

v1.3.4 · Jan 19, 2026, 11:20 PM

Melonpan Block – Code

v2.0.3 · Jan 19, 2026, 11:20 PM

User Mass Messaging

v1.0.0 · Jan 19, 2026, 11:20 PM

Player for SoundCloud – Embed and Play Audio Tracks

v1.0.11 · Jan 19, 2026, 11:20 PM

Grid Button for LearnDash

v1.0.1 · Jan 19, 2026, 11:20 PM

Manage User Roles

v2.1.0 · Jan 19, 2026, 11:20 PM

Hide WP Admin Bar by WP ALL SUPPORT

v1.0.3 · Jan 19, 2026, 11:20 PM

Post Type Management

v1.2.2 · Jan 19, 2026, 11:20 PM

v1.0 · Jan 19, 2026, 11:20 PM

Simply Better Scroll Bar

v1.2.5 · Jan 19, 2026, 11:20 PM

v1.2 · Jan 19, 2026, 11:20 PM

LovedByAI – SEO for LLMs and AI Search

v1.1.0 · Jan 19, 2026, 11:20 PM

Advanced Product Wishlist for Woocommerce

v1.0.6 · Jan 19, 2026, 11:20 PM

Skins for Social Media Feather

v1.0 · Jan 19, 2026, 11:20 PM

Easy Content Analysis

v1.0 · Jan 19, 2026, 11:20 PM

ProAbono – Subscription billing

v2.0.16 · Jan 19, 2026, 11:20 PM

WPYog Documents

v1.3.7 · Jan 19, 2026, 11:19 PM

AWeber Dev Facile

v0.1 · Jan 19, 2026, 11:19 PM

Enhanced Media Library

v2.9.4 · Jan 19, 2026, 11:19 PM

Easy Popular Posts

v15.01.12 · Jan 19, 2026, 11:19 PM

gee Search Plus, improved WordPress search

v1.4.4 · Jan 19, 2026, 11:19 PM

v1.1 · Jan 19, 2026, 11:19 PM

v1.0.4 · Jan 19, 2026, 11:19 PM

v1.6.0 · Jan 19, 2026, 11:19 PM

My Contador lesr

v2.0 · Jan 19, 2026, 11:19 PM

v1.1.8 · Jan 19, 2026, 11:19 PM

Auranet Recent Photos

v2.0 · Jan 19, 2026, 11:19 PM

Whitepaper manager – WPH

v1.0.3 · Jan 19, 2026, 11:19 PM

Remove NoFollow Commenter URL

v1.0 · Jan 19, 2026, 11:19 PM

v1.0.13 · Jan 19, 2026, 11:19 PM

v1.5.1 · Jan 19, 2026, 11:19 PM

CHURCHOPE Theme iCal Generator

v1.0 · Jan 19, 2026, 11:19 PM

Mega Database Cleanup

v1.0.0 · Jan 19, 2026, 11:19 PM

n8n chatbot – Chatics

v1.0.1 · Jan 19, 2026, 11:19 PM

v1.0 · Jan 19, 2026, 11:19 PM

v0.1.4 · Jan 19, 2026, 11:19 PM

Cloudflare SSL by Weslink

v1.0.9 · Jan 19, 2026, 11:19 PM

HubSpot All-In-One Marketing – Forms, Popups, Live Chat

v11.3.37 · Jan 19, 2026, 11:19 PM

Magefan Blog Export

v1.0.0 · Jan 19, 2026, 11:19 PM

v1.4.0 · Jan 19, 2026, 11:19 PM

Advanced Shipping Manager

v1.4.0 · Jan 19, 2026, 11:19 PM

LH Response Handler

v1.00 · Jan 19, 2026, 11:19 PM

CC-Disable-Date

v1.0.0 · Jan 19, 2026, 11:19 PM

v1.8.10 · Jan 19, 2026, 11:19 PM

Delivery Date Time Picker for WooCommerce

v1.0.0 · Jan 19, 2026, 11:19 PM

v1.2 · Jan 19, 2026, 11:19 PM

ScanForPay – Alipay & AlipayHK & WechatPay Payment Solutions for WooCommerce

v1.1.9 · Jan 19, 2026, 11:19 PM

RusSocialKnopki 23

v2.2.12042011 · Jan 19, 2026, 11:19 PM

Safe PHP Code Widget

v1.0 · Jan 19, 2026, 11:19 PM

Dadevarzan WordPress Department

v1.1.8 · Jan 19, 2026, 11:19 PM

Aetta Email Capture

v1.0.1 · Jan 19, 2026, 11:19 PM

Seed Buddhist Year

v1.0.4 · Jan 19, 2026, 11:19 PM

SeedX Video Gallery for WooCommerce

v1.0 · Jan 19, 2026, 11:19 PM

BackTo Top Plugin

v1.5 · Jan 19, 2026, 11:19 PM

No Frills Gallery

v1.3.4 · Jan 19, 2026, 11:19 PM

FP News Scroller

v1.0.0 · Jan 19, 2026, 11:19 PM