Popular WordPress plugins that look abandoned

These plugins are installed on tens of thousands — sometimes millions — of sites, yet haven't shipped an update in over a year. An unmaintained plugin won't get security patches, and the bigger its install base, the more sites are exposed.

Data-mined from the 250 most popular plugins on WordPress.org. “Abandoned” here means no update in over 14 months; plugins flagged Critical haven't been touched in over three years. Snapshot from June 2026 — a plugin may be updated again at any time.

Plugin Installs Last updated

WP-PageNavi wp-pagenavi 500K+ Dec 2024 WooCommerce Legacy REST API woocommerce-legacy-rest-api 400K+ Jan 2025 Template Kit – Import template-kit-import 400K+ Aug 2024 Really Simple CAPTCHA really-simple-captcha 300K+ Feb 2025 Limit Login Attempts limit-login-attempts 300K+ Apr 2023 Health Check & Troubleshooting health-check 300K+ Jul 2024 Activity Log – Monitor & Record User Changes aryo-activity-log 200K+ Nov 2024 Layout Grid Block layout-grid 200K+ Jul 2023 Table of Contents Plus table-of-contents-plus 200K+ Nov 2024

Running any of these? It doesn't always mean trouble, but it's worth a look — score it in full or read how to spot and replace an abandoned plugin .