You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This plugin alerts you if any of your plugins have security vulnerabilities. It does this by utilising the WPScan Vulnerability Database once a day.
== Description ==
This plugin determines whether any of your plugins have security vulnerabilities. It does this by looking up details in the WPScan Vulnerability Database.
It will run a scan once a day, and e-mail the administrator if any vulnerable plugins are found.
It also adds a new menu option to the admin tools menu called "Plugin Security Scanner". Clicking this runs a scan. If the scan finds any problems, it shows you a list of plugins that have vulnerabilities, along with a description of the issue.
Icons made by <a href="http://www.flaticon.com/authors/alessio-atzeni" title="Alessio Atzeni">Alessio Atzeni</a> from <a href="http://www.flaticon.com" title="Flaticon">www.flaticon.com</a> is licensed by <a href="http://creativecommons.org/licenses/by/3.0/" title="Creative Commons BY 3.0">CC BY 3.0</a>
== Screenshots ==
1. Example run of the security scanner that has found two vulnerable plugins.
2. E-mail alert to administrator when vulnerable plugins have been found.
== Changelog ==
= 1.2.0 =
* Added i18n support
= 1.1.9 =
* Fix: Removed unecessary ob_flush calls
* Fix: If vulnerability does not have a "fixed in" version number, report it as a vulnerability
= 1.1.8 =
* Fix: corrected links to WPScan Vulnerability Database
= 1.1.7 =
* Add link to WPScan Vulnerability Database details page
= 1.1.6 =
* Conditionally include plugin.php include in case it is not already included
= 1.1.5 =
* Escape output in HTML report to prevent XSS
= 1.1.4 =
* Added blog title to email subject
= 1.1.3 =
* Fixed bug that prevented admin email being sent
= 1.1 =
* Email admin daily if any vulnerabilities are found