Plugins with vulnerabilities are residing right inside the WordPress repository and the ones mentioned in this article written by Mark Maunder, a security expert, and principal at Wordfence may not be all of them. Wordfence does a great job in identifying 22 abandoned and outdated plugins that have as many as 30,000 active installs. Any WordPress specialist will tell you just how important it is to keep your plugins up-to-date. Unfortunately, most small business owners and/or bloggers are busy doing what they do best and are not able to keep up with all the vulnerabilities that come out or keeping track of which plugins are current and which are not.
In this article concerning plugins with vulnerabilities, Mark puts out some numbers that are very surprising. The most surprising number to me was that the total number of plugins in the repository that have not been updated in over 2 years is about 46%. That is a staggering number considering how many people have installed those plugins over the years.
Head over to Wordfence and read the article, 22 Abandoned WordPress Plugins with Vulnerabilities yourself. If you find that you are using one of the plugins mentioned, contact us right away and we will help you to take care of the issue and perhaps even find a replacement plugin to do the job.