← Back to feed
Security 71% 1 min readJun 22, 2026, 10:47 PM

AI found 300 WordPress plugin zero-days in 72 hours. I build plugins. Here's what changed for me.

Evolving story · 1 updatesWordPress Plugin Security RisksTimeline →
30-second summary

An AI scan discovered 300 zero-day vulnerabilities in WordPress plugins within 72 hours, prompting a developer to re-evaluate their plugin's security.

AI found 300 WordPress plugin zero-days in 72 hours. I build plugins. Here's what changed for me.
Key takeaways
  • An AI scan found 300 zero-day vulnerabilities in WordPress plugins within 72 hours.
  • The developer's own plugin had 35 vulnerabilities before a security review.
  • AI can be a powerful tool for identifying security risks in software.
  • Regular security audits and the use of AI in testing can significantly improve plugin security.
Full story

A developer, who also creates WordPress plugins, utilized an AI tool to scan for security vulnerabilities. The AI discovered 300 zero-day vulnerabilities in various plugins over the course of 72 hours. This experience led the developer to reflect on their own plugin's security, which had previously been reviewed and found to have 35 vulnerabilities. The developer's plugin, a chatbot, underwent a security review before its release. The discovery of such a large number of vulnerabilities in a short time frame highlights the potential for AI in identifying security risks in software. This has significant implications for developers, as it underscores the importance of rigorous security testing and the potential benefits of leveraging AI in this process.

Source: AI found 300 WordPress plugin zero-days in 72 hours. I build plugins. Here's what changed for me.. Read the full piece at the source.

Why this matters
Developers

Developers need to be aware of the potential security risks in their plugins and utilize tools like AI scans to identify vulnerabilities.

Businesses

Businesses that rely on WordPress plugins should ensure that their plugins are regularly audited for security vulnerabilities to protect their websites and data.

Investors

Investors in companies that develop WordPress plugins should consider the security implications of their investments and encourage robust security testing.

Students

Students learning about web development and security should understand the importance of security testing and the role AI can play in this process.

Everyone

The general public should be aware of the potential security risks associated with WordPress plugins and the steps being taken to mitigate these risks.

Glossary
Zero-day vulnerability
A previously unknown security vulnerability in software that can be exploited by attackers.

AI bias estimate: The article appears to be a factual account of the developer's experience with AI security scanning, with minimal bias. (Automated estimate, not a definitive judgement.)

Sources · 1

Summary and analysis generated by AI (groq). Always verify against the original sources.

Related
TickrWire

AI news intelligence. We aggregate, verify, summarise and explain the latest artificial intelligence news from open, legal sources.

Daily AI digest

Top AI stories, summarised, in your inbox each morning.

© 2026 TickrWire. Summaries and analysis are AI-generated and may contain errors.Privacy