Make WordPress Core

Opened 10 years ago

Closed 10 years ago

Last modified 10 years ago

#10958 closed enhancement (fixed)

WP.org download counter spam

Reported by: hallsofmontezuma Owned by: ryan
Milestone: WordPress.org Priority: normal
Severity: normal Version:
Component: WordPress.org site Keywords:
Focuses: Cc:
PR Number:


It looks like some plugin authors are spamming the download counts. Every now and then, a plugin mysteriously has thousands or tens of thousands of downloads in a day.
It's generally blatant when it isn't legitimate. ie, a brand new plugin with no or few ratings, no forum threads, etc. This is obviously done to have the appearance of being "popular".

Is there something that can be done to limit the download count to IP per timeframe, or some such thing?

Change History (4)

#1 @JohnMyr
10 years ago

Plugins are manipulated to top 5 and are containing spam code.

#2 @JohnMyr
10 years ago

Some of the plugins with faux stats show affiliate ads in backend:


#3 @mdawaffe
10 years ago

  • Resolution set to fixed
  • Status changed from new to closed

Download counts have always been limited by IP per day.

Sadly, the implementation was backed by a MyISAM table that filled up :)

The implementation is now backed by a InnoDB table that should be able to soak up a lot more data.

#4 @westi
10 years ago

  • Milestone changed from Unassigned to WordPress.org site bugs
Note: See TracTickets for help on using tickets.