Is Passwords Evolved free?

Yes, Passwords Evolved is free to use. It is available as a free plugin on WordPress.org.

How many websites use Passwords Evolved?

Passwords Evolved has 2.0K+ active installations as tracked by WordPress.org.

What are the best Passwords Evolved alternatives?

Popular alternatives to Passwords Evolved include Theme My Login, PPWP – Password Protect Pages, Google Authenticator. You can compare them side-by-side on our comparison pages.

Does Passwords Evolved work with the latest WordPress?

Passwords Evolved has been tested up to WordPress 6.8.0. It requires WordPress 5.2+ and PHP 5.6+.

PluginSift

Passwords Evolved

Name: Passwords Evolved
Rating: 5 (2 reviews)
Author: Carl Alexander

A reimagining of WordPress authentication using modern security practices.

By Carl Alexander·Password·Free

5(2 reviews)

·2.0K+ active installs·Updated 1 year ago

Download Compare

As of April 2026, Passwords Evolved is a WordPress password plugin with 2.0K+ active installations and a 5/5 rating from 2 reviews. It has been downloaded 26K+ times in total. Requires WordPress 5.2+ and PHP 5.6+. Available on WordPress.org since 2018. Last updated 1 year ago — may have compatibility concerns. Download volume is stable this week. Top alternative: Theme My Login.

5/52 reviews

2.0K+active installs

26K+total downloads

8 yearssince 2018

Overview

Important Notice: This plugin is no longer supported on wordpress.org. Please open issues on GitHub.

The goal of this plugin is to shore up the WordPress authentication using standard security practice recommendations. At this time, the plugin improves WordPress authentication by doing the following:

Enforcing uncompromised passwords

This plugin prevents someone from using passwords that have appeared in data breaches. Whenever someone logs into a WordPress site, it’ll verify their password using the Have I been pwned? API. If their password appeared in a data breach, the plugin will prevent them from logging in until they reset their password.

By default, this level of enforcement is only done on an account that has the “administrator” role. You can change which roles h…

Read full description on WordPress.org

Ratings & Reviews

52 reviews

5 ★

4 ★

3 ★

2 ★

1 ★

Recent Reviews

Such a simple, yet brilliant, idea

by Austin Ginder·3 years ago

This simple protection check is an absolute must. Every WordPress website can benefit. Highly recommend that WordPress core adopt this functionality.

Great enhancement and well made

by Knut Sparhell·4 years ago

This seems to work very well, at least no issues – immediate or long term. A client user was very surprised that “WordPress” could know their password was “pwned”, but thankful for the reminder.

Beware that if you deactivate this plugin, users have to reset their passwords. So just keep it – for the enhanced security through a modern and relatively simple plugin.

Should be added to core, IMO.

Download Trends

Today: 11Yesterday: 7This week: 85Period total: 8K

Compatibility

WordPress	5.2+ requiredTested up to 6.8.0
PHP	5.6+ required

Version Adoption

v1.4

95.7%

v1.3

4.3%

Top Alternatives to Passwords Evolved

Theme My Login

3.760K+ installsUpdated 6 months ago

View Compare

PPWP – Password Protect Pages

4.730K+ installsUpdated 3 days ago

View Compare

Google Authenticator

4.320K+ installsUpdated 3 years ago

View Compare

Frontend Reset Password

4.410K+ installsUpdated 2 months ago

View Compare

Passster – Password Protect Pages and…

4.210K+ installsUpdated Yesterday

View Compare

View all password plugins →

Frequently Asked Questions

Changelog

1.4.0

Released: 2025-03-22

Only define wp_generate_password for wordpress 6.8 or higher [carlalexander]
Add support for wp_hash_password_algorithm hook in wordpress 6.8 [carlalexander]

View full changelog on WordPress.org

Contributors

Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.

Passwords Evolved

A reimagining of WordPress authentication using modern security practices.

By Carl Alexander·Password·Free

5(2 reviews)

·2.0K+ active installs·Updated 1 year ago

Download Compare

5/52 reviews

2.0K+active installs

26K+total downloads

8 yearssince 2018

Overview

Important Notice: This plugin is no longer supported on wordpress.org. Please open issues on GitHub.

Enforcing uncompromised passwords

By default, this level of enforcement is only done on an account that has the “administrator” role. You can change which roles h…

Read full description on WordPress.org

Ratings & Reviews

52 reviews

5 ★

4 ★

3 ★

2 ★

1 ★

Recent Reviews

Such a simple, yet brilliant, idea

by Austin Ginder·3 years ago

This simple protection check is an absolute must. Every WordPress website can benefit. Highly recommend that WordPress core adopt this functionality.

Great enhancement and well made

by Knut Sparhell·4 years ago

Beware that if you deactivate this plugin, users have to reset their passwords. So just keep it – for the enhanced security through a modern and relatively simple plugin.

Should be added to core, IMO.

Download Trends

Today: 11Yesterday: 7This week: 85Period total: 8K

Compatibility

WordPress	5.2+ requiredTested up to 6.8.0
PHP	5.6+ required

Version Adoption

v1.4

95.7%

v1.3

4.3%

Top Alternatives to Passwords Evolved

Theme My Login

3.760K+ installsUpdated 6 months ago

View Compare

PPWP – Password Protect Pages

4.730K+ installsUpdated 3 days ago

View Compare

Google Authenticator

4.320K+ installsUpdated 3 years ago

View Compare

Frontend Reset Password

4.410K+ installsUpdated 2 months ago

View Compare

Passster – Password Protect Pages and…

4.210K+ installsUpdated Yesterday

View Compare

View all password plugins →

Frequently Asked Questions

Changelog

1.4.0

Released: 2025-03-22

Only define wp_generate_password for wordpress 6.8 or higher [carlalexander]
Add support for wp_hash_password_algorithm hook in wordpress 6.8 [carlalexander]

View full changelog on WordPress.org

Contributors

Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.