This plugin hasn’t been tested with the latest 3 major releases of WordPress. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.



BadPass helps to promote better password selection by warning users when they are using a common password. This is
done by comparing the logged in user’s password hash against a list of over 500 commonly used and easy to guess

You might also be interested in the BadPass Firefox plugin.


  • The warning displayed by BadPass-WP when the logged in user is using a common and easy to guess password.
  • The warning when the WordPress 3.1 admin bar isn't enabled


  1. Upload the whole badpass-wp directory to the /wp-content/plugins/ directory
  2. Activate the plugin through the ‘Plugins’ menu in WordPress


There are no reviews for this plugin.

Contributors & Developers

“BadPass-WP” is open source software. The following people have contributed to this plugin.


Translate “BadPass-WP” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.



  • Improved integration to perform password checks when the user profile change password form and the WordPress 3.1+ password reset form is submitted
  • Added additional checks to determine if entered passwords match the user’s login name
  • Done some refactoring of source code

1.11, 1.12

  • Minor documentation fixes!


  • Placed warning bar at the top of the page when the WordPress admin bar is disabled
  • Tested in WordPress 3.0 and updated minimum required version to reflect this


  • Initial release