Title: CloudAware Security Audit
Author: CloudAware
Published: <strong>30 de juny de 2025</strong>
Last modified: 1 d'agost de 2025

---

Cerca extensions

![](https://ps.w.org/cloudaware-security-audit/assets/icon-256x256.png?rev=3320034)

# CloudAware Security Audit

 Per [CloudAware](https://profiles.wordpress.org/cloudaware/)

[Baixa](https://downloads.wordpress.org/plugin/cloudaware-security-audit.1.0.12.zip)

 * [Detalls](https://ca.wordpress.org/plugins/cloudaware-security-audit/#description)
 * [Ressenyes](https://ca.wordpress.org/plugins/cloudaware-security-audit/#reviews)
 *  [Instal·lació](https://ca.wordpress.org/plugins/cloudaware-security-audit/#installation)
 * [Desenvolupament](https://ca.wordpress.org/plugins/cloudaware-security-audit/#developers)

 [Suport](https://wordpress.org/support/plugin/cloudaware-security-audit/)

## Descripció

This plugin adds auditing functionality to WordPress. It does this by adding extra

REST API endpoints. Using these endpoints it is possible to: – see the version of
core – see whether there is an update available for core – see what plugins are 
installed – see whether these plugins have been actived – see whether these plugins
have autoupdate enabled – see whether these plugins have updates – see a list of
vulnerabilities for these plugins – see what themes are installed – check if 2FA
is enabled – see MD5 hashes of all theme and plugin folders

For installations where the RESTAPI is disabled, the plugin can also push this information
to an endpoint.
 This will work for installations that are behind a geoblock or 
have no RESTAPI. To disable this, remove the cronjob.

### Dependancies

For getting vulnerabilities of WordPress components this plugin can use the WPVulnerability
plugin
 (https://wordpress.org/plugins/wpvulnerability/). If this plugin is installed,
it will be used, otherwise this plugin will work without the information from WPVulnerabilty
plugin. Without installing this dependancy no data is transferred to WPVulnerability.
Please see https://www.wpvulnerability.com/privacy/ for more information.

### External services

In order to determine the latest version of installed software components this plugin
uses the following
 external services: _GitHub_ Terms of Service: https://docs.github.
com/en/site-policy/github-terms/github-terms-of-service Privacy Statement: https://
docs.github.com/en/site-policy/privacy-policies/github-general-privacy-statement–
Releases list from ImageMagick github repository (https://api.github.com/repos/ImageMagick/
ImageMagick/releases) – Releases list from curl github repository (https://api.github.
com/repos/curl/curl/releases) _Slider Revolution_ Terms of Service: https://www.
sliderrevolution.com/terms/ Privacy Statement: https://www.sliderrevolution.com/
terms/privacy/ – Changelog documentation from Slider Revolution website (https://
www.sliderrevolution.com/documentation/changelog/)

Apart from the usual headers (ip-address, UserAgent) used in a GET request no other
information is send to these services.
 Specifically no version information is transmitted
to external services.

If you fill out an external url in the callback URL field in the settings, a WordPress
cronjob will send a POST request
 with the audit data to this URL daily.

## Instal·lació

Install the plugin via the WordPress «Plugins» menu in WordPress and then
 activate
using the blue «Activate» button. You can add a new user with restrictive role to
your WordPress installation from within the plugin settings page by clicking on 
a button.

## PMF

### Is it safe?

We use as little rights as possible to get the data from WordPress.
 The API endpoint
does not include any POST, PUT or DELETE methods, so it is read-only. If you do 
see a problem with this plugin, please contact us: https://cloudaware.eu/.well-known/
security.txt

## Ressenyes

![](https://secure.gravatar.com/avatar/bd07d37098d81ca750ef745a297829d1d0d5f77d7fc1e154eedb7f49609db7d4?
s=60&d=retro&r=g)

### 󠀁[Fantastic super useful](https://wordpress.org/support/topic/fantastic-super-useful-2/)󠁿

 [dennisspaan](https://profiles.wordpress.org/dennisspaan/) 2 de juliol de 2025

Does what it promises

 [ Llegiu tota la 1 ressenya ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/)

## Col·laboradors i desenvolupadors

«CloudAware Security Audit» és programari de codi obert. La següent gent ha col·laborat
en aquesta extensió.

Col·laboradors

 *   [ CloudAware ](https://profiles.wordpress.org/cloudaware/)

[Traduïu «CloudAware Security Audit» a la vostra llengua.](https://translate.wordpress.org/projects/wp-plugins/cloudaware-security-audit)

### Interessats en el desenvolupament?

[Navegueu pel codi](https://plugins.trac.wordpress.org/browser/cloudaware-security-audit/),
baixeu-vos el [repositori SVN](https://plugins.svn.wordpress.org/cloudaware-security-audit/),
o subscriviu-vos al [registre de desenvolupament](https://plugins.trac.wordpress.org/log/cloudaware-security-audit/)
per [fisl de subscripció RSS](https://plugins.trac.wordpress.org/log/cloudaware-security-audit/?limit=100&mode=stop_on_copy&format=rss).

## Registre de canvis

#### v1.0.12

 * Format latest PHP version properly

#### v1.0.11

 * fix for php test (missing latest version)

#### v1.0.10

 * SQL server version check
 * disk space check
 * cron information
 * file uploads enabled in PHP config?
 * timezone check

#### v1.0.9

 * Code cleanup
 * Add hashing of theme and plugin folders
 * Add button to setting to add new user and role to system
 * Cleaner initialisation, deinitialisation

#### v1.0.8

 * Added check if 2FA is enabled through Wordfence plugin

#### v1.0.7

 * Added documentation, removed creation of user

#### v1.0.6

 * Added more configuration checks

#### v1.0.5

 * Added more config checks
 * Added new role for use in API (no more external plugin needed)

#### v1.0.4

 * Removed curl dependancy
 * Better error handling

#### v1.0.0

 * Initial release

## Meta

 *  Versió **1.0.12**
 *  Darrera actualització **fa 12 mesos**
 *  Instal·lacions actives **Menys de 10**
 *  Versió del WordPress ** 6.0 o posterior **
 *  Provada fins a **6.8.5**
 *  Idioma
 * [English (US)](https://wordpress.org/plugins/cloudaware-security-audit/)
 * Etiquetes
 * [audit](https://ca.wordpress.org/plugins/tags/audit/)[security](https://ca.wordpress.org/plugins/tags/security/)
 *  [Vista avançada](https://ca.wordpress.org/plugins/cloudaware-security-audit/advanced/)

## Valoracions

 5 sobre 5 estrelles.

 *  [  1 valoració de 5 estrelles     ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=5)
 *  [  0 valoracions de 4 estrelles     ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=4)
 *  [  0 valoracions de 3 estrelles     ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=3)
 *  [  0 valoracions de 2 estrelles     ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=2)
 *  [  0 valoracions de 1 estrelles     ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=1)

[Your review](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/#new-post)

[Visualitzeu totes les ressenyes](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/)

## Col·laboradors

 *   [ CloudAware ](https://profiles.wordpress.org/cloudaware/)

## Suport

Teniu quelcom a dir? Necessiteu ajuda?

 [Visualitza els fòrums de suport](https://wordpress.org/support/plugin/cloudaware-security-audit/)