Security firm RIPS Technologies has analyzed 44,705 in the official WordPress plugins directory and discovered that more than 8,800 of them are flawed. The experts conducted a static code analysis of all the plugins searching for those that have at least one PHP file. The analysis of larger plugins (10,523) revealed that 43% of them (4,559) contain at least a medium severity issue. The researchers used a honeypot between January and December 2016 to better analyze the attacks against WordPress plugins.”]
Source: http://securityaffairs.co/wordpress/54440/security/wordpress-plugins-hacking.html

