WordPress Security Scanner
Perform a vulnerability assessment of your WordPress installation. Detect plugins, themes, user enumeration, and misconfigurations.
Passive Scan
Analyzes HTML source only. Safe, stealthy, detects basic info.
Active Enumeration
Aggressive Nmap scripts. Finds hidden plugins & users.
Full Audit
Checks 18,000+ plugins against CVE database.
Scan Report:
ID: #SCAN-
Hosting Environment
IP Address
Web Server
CMS
Security Headers
X-Frame-OptionsDENY
X-Content-Typenosniff
HSTSMissing
Detected Plugins
Active Scan Complete| Name | Version | Status |
|---|
User Enumeration
Passive Analysis
Checks HTML source code, linked Javascript, and HTTP headers without aggressive probing.
Nmap NSE Scripts
Advanced scripts to identify plugins, themes, and users even if hidden from the front-end.
Vulnerability DB
Cross-reference detected versions against a database of known WordPress CVEs.