Scan WordPress Plugins for Security Vulnerabilities
Continuously monitors your WordPress sites for vulnerable plugins using the WPVulnDB API. Get instant alerts and actionable update or removal recommendations before attackers strike.
Real-time Scans
Detect new CVEs as they drop
Multi-site Dashboard
Monitor all your WP installs
Email Alerts
Instant notifications on risk
Simple Pricing
Pro Plan
$10
per month
- ✓Unlimited WordPress sites
- ✓Automated daily scans
- ✓WPVulnDB vulnerability data
- ✓Email alerts for new CVEs
- ✓Update & removal recommendations
- ✓Multi-site dashboard
Cancel anytime. No contracts.
FAQ
How does the scanner detect vulnerabilities?
We query the WPVulnDB API and cross-reference it with your installed plugins via the WordPress REST API. Any plugin with a known CVE triggers an immediate alert.
Do I need to install anything on my WordPress site?
No plugin required. We use the public WordPress REST API to read your installed plugins. Just add your site URL and API key in the dashboard.
What happens when a vulnerability is found?
You receive an email alert with the CVE details, severity score, and a specific recommendation — whether to update to a patched version or remove the plugin entirely.