Plugin Pulse
← Pulse
H

HTTP/1.1 403 Forbidden header on a failed login

by atmosphear · Security

Send an "HTTP/1.1 403 Forbidden" header on a failed login instead of the default "HTTP/1.1 200 OK"

⚠ Stale⚠ Likely abandoned⚠ Few reviews
How scoring works →
45 Health · D
Maintenance 3/100
Rating quality 76/100
Support 70/100

45 health vs 66 average across 445 Security plugins

High removal-risk signals

63/100

Maintenance and integrity signals that tend to precede a WordPress.org removal. Not an official status, a heads-up to act.

  • Long abandoned. No update in 10+ years — the top precursor to removal once a vulnerability is found.
  • Compatibility drift. Tested only up to WordPress 4.4.34, well behind 6.8.

Directory ranking optimization

How it's scored →

How well this listing is tuned to rank in WordPress.org search, on the factors an owner controls. Not popularity, optimization.

33 / 100

Under-optimized

Biggest win: Update recency

Update recency 0/100
WP compatibility 5/100
Rating quality 52/100
Listing tuning 84/100

To rank higher: Last updated 3768 days ago — ship an update; wp.org decays a listing's search weight after ~180 days.

Get the full rank-higher report →

Daily downloads

Since 2022-10-05 · 1,381 days · wp.org + Plugin Pulse archive

-52% vs prior 30d
Oct 22
Jul 26

30-day downloads

Rolling 30-day volume · peaks are release surges

59

now · peak 157

Directory rank vs rivals

wp.org popularity rank over time · higher is better · when a rival's line climbs above yours, they've overtaken you

HTTP/1.1 403 Forbidd · #11382 WP fail2ban Add-on f · #7638 WP fail2ban Add-on f · #8350 Akismet Anti-spam: S · #7

Downloads per 1k installs · 30d

Engagement proxy · release spikes are signal, a long slide is an aging base

Estimated active installs

wp.org reports only “200+”. The real number sits in this band.

tracked estimate
200–300 ≈290

Refined from the date this plugin crossed into its current band.

Install history · since 2022-10-04 · 1,378 observations

Details

Version
1.0
Last updated
10.3y ago
Added
2016-03-23 · 10 yrs on WP
Requires WP
4.0.0
Tested up to
4.4.34
Requires PHP

Growth timeline

Install-band crossings we have observed, and how long each band took to outgrow

  1. 2024-06-01 100+ → 200+ up

Competes with

The plugins that solve the same job, ranked by shared tags then reach — closest match first

Compare head to head →

Embed this report card

Drop a live Pulse card for HTTP/1.1 403 Forbidden header on a failed login into a readme, a review or a deck. It updates itself.

<iframe src="https://plugins.wpmayor.com/embed/http11-403-forbidden-header-on-a-failed-login" width="480" height="300" style="border:0" loading="lazy" title="HTTP/1.1 403 Forbidden header on a failed login — Plugin Pulse"></iframe>
Preview card ↗

HTTP/1.1 403 Forbidden header on a failed login: 200+ active installs, 5.0★ (2 reviews). Plugin Pulse (WP Mayor), as of 2026-07-17. https://plugins.wpmayor.com/plugin/http11-403-forbidden-header-on-a-failed-login