Baixa

WPVulnerability

Per Javier Casares

Descripció

This plugin, with the free and unlimited WordPress Vulnerability Database API, allows to analyze all published vulnerabilities directly from your WordPress.

  • The current version of your WordPress will be checked.
  • All the plugins you have, whether from the repository, external or premium, will be checked.
  • All the themes you have, whether from the repository, external or premium, will be checked.

In case there is any documented vulnerability, you can visit the Site Heath of your WordPress and find the vulnerability information. You may find that your plugin or theme has a vulnerability, and it is as simple as upgrading to an updated version; it will inform you if the plugin/theme is no longer available for download or does not have a patch.

In settings you will have the options to send notification periodically for your installation. You can select between every day or weekly basis.

And then, You will find these wpcli commands:
wp wpvulnerability --help
wp wpvulnerability plugins (partially implemented)
wp wpvulnerability core (not implemented yet)
wp wpvulnerability themes (not implemented yet)

Privacy Policy

This plugin or the WordPress Vulnerability Database API does not collect any information about your site, your identity, the plugins, themes or content the site has.

Data reliability

The information provided by the information database comes from different sources that have been reviewed by third parties. There is no liability of any kind for the information. Act at your own risk.

Contributors

You can contribute to this plugin at the WPVulnerability GitHub repository.

Links

Captures

Instal·lació

Automatic download

Visit the plugin section in your WordPress, search for [wpvulnerability]; download and install the plugin.

Manual download

Extract the contents of the ZIP and upload the contents to the /wp-content/plugins/wpvulnerability/ directory. Once uploaded, it will appear in your plugin list.

PMF

Where does the vulnerability information come from?

The origin is in the WPVulnerability.com API. The vulnerabilities that appear in this API come from different sources, such as CVEs.

Is data from my site sent anywhere?

No. Never. Your privacy is very important to us. We do not commercialize with your data.

What vulnerabilities will I find?

Vulnerabilities in WordPress core, plugins and themes are documented.

What do I do if my site has a vulnerability?

First of all, peace of mind. Investigate what the vulnerability is and, above all, check that you have the latest version of the compromised element. We actively recommend that you keep all your WordPress and its plugins up to date.

Ressenyes

Útil y sencillo

21 de novembre de 2022
Una manera muy cómoda de conocer las vulnerabilidades, en cuanto a plugins, de una web. ¡Muchas gracias!

A great aid for detecting vulnerabilities.

6 de juny de 2022
This plugin uses an API to check if the version of your core, themes and/or plugins present on your WordPress installation has any known vulnerability. It cares about efficiency so it can be always active, it won't have any noticeable affection to the load time of the public website (it only connects to the api when an administrator installs/updates something and also via cron each several hours). I can recommend to have this plugin active to help you spot possible vulnerabilities when forgot or delayed the update of plugin/theme/core.

Excelente, rápido e informativo

6 de maig de 2022
Hace años que uso diferentes fuentes de ddbb's para estar al día de las vulnerabilidades de plugins y temas, pero siempre ha sido un trabajo excesivamente manual. Este plugin me ha ayudado a simplificar el proceso de comprobación. Se instala y activa y al momento, en Plugins, zassss, te indica en rojo los que son vulnerables, lo que permite, a los que administramos muchos sitios, de una vista rápida ver que plugins hay que actualizar inmediatamente y cuales desechar por razones de seguridad. Gracias a Javier y David por este trabajo. ¡Muy útil! 👏👏👏

Sencillo y efectivo

6 de maig de 2022
Me encanta poder ver en la misma página de plugins las alertas de las vulnerabilidades de cada plugin. Esto debería estar en el core 🙂
Llegiu totes les 8 ressenyes

Col·laboradors i desenvolupadors

«WPVulnerability» és programari de codi obert. La següent gent ha col·laborat en aquesta extensió.

Col·laboradors

“WPVulnerability” s'ha traduït a 11 configuracions regionals. Gràcies als traductos per les seves aportacions.

Tradueix “WPVulnerability” a la teva llengua.

Interessats en el desenvolupament?

Navegueu pel codi, baixeu-vos el repositori SVN, o subscriviu-vos al registre de desenvolupament per fisl de subscripció RSS.

Registre de canvis

1.3.3

  • Code security improvements
  • Fix some PHP errors

1.3.1

  • Code security improvements
  • Fix the Severity value
  • A better Site Health information
  • Compatibility: WordPress 5.2 – WordPress 6.2
  • Compatibility: PHP 7.2 – PHP 8.1

1.3.0

  • Improved security in code.
  • Information, when available, about the vulnerability, in a simplified way. Only in the plugin list.
  • Information, when available, about the potential severity and exploitability. Only in the plugin list.
  • Links to sources to get additional information. Only in the plugin list.

Extensió de la comunitat

Col·laboreu

Aquesta extensió està desenvolupada i rep suport d'una comunitat.

Meta

Valoracions

Mostra-les totes
Entreu per enviar una ressenya.

Suport

Problemes resolts durant els darrers dos mesos:

1 de 1

Visualitza els fòrums de suport