Any tier · 159 specialized tests

WordPress Security

Deep vulnerability scanning for WordPress sites, plugins, and themes

€89 Add to Scan

What Gets Tested

WordPress core version detection & CVE matching
70,000+ Wordfence vulnerability signatures (daily updated)
Plugin vulnerability scanning (WP plugin + theme CVEs)
Theme security assessment
wp-config.php exposure detection
XML-RPC abuse testing
User enumeration via REST API & author archives
Brute force protection testing
File permission checks (wp-content, uploads)
Database prefix detection
WordPress REST API security assessment
Debug log exposure (debug.log)
Backup file detection (.sql, .zip, .tar.gz)

How It Works

1

Detection

Identify WordPress version, installed plugins, and active theme using fingerprinting and REST API.

2

CVE Matching

70,000+ Wordfence vulnerability signatures scan for known plugin/theme vulnerabilities matching your installed versions.

3

Configuration

Check wp-config.php exposure, file permissions, debug mode, database prefix, and security headers.

4

Authentication

Test XML-RPC, REST API user enumeration, login brute force protection, and password policies.

Compliance Coverage

OWASP-A06 (Vulnerable Components) OWASP-A05 (Security Misconfiguration) GDPR Art 32

WordPress Security

€89

Any tier · One-time per scan

159 specialized tests + AI-powered analysis

Start Your Scan

Select this addon when configuring your scan

Related Add-Ons

Joomla Security

€59

Comprehensive Joomla CMS vulnerability assessment

Drupal Security

€59

Enterprise Drupal vulnerability scanning and hardening assessment