Wordpress vulnerabilities test scanner [closed]

Closed. This question is off-topic. It is not currently accepting answers.

---

Want to improve this question? Update the question so it's on-topic for Stack Overflow.

Closed 11 years ago.

开发者_如何学Python Improve this question

Do you know any stand-alone client or web tool (like grc) that could scan, find and report Wordpress vulnerabilities, plugins included?

---

There's WordPress Exploit Scanner that works as a WP plugin.

"This plugin searches the files on your website, and the posts and comments tables of your database for anything suspicious. It also examines your list of active plugins for unusual filenames. It does not remove anything. That is left to the user to do."

Like anything of this nature, it's open to discussion how effective it is.

---

Wordpress isn't a special web application so any scanner will work. Use a scanner like Sitewatch or Wapiti.

But if you want to keep your wordpress install from getting pwn3d then you have to make sure it and all of its plugins are up to date because a scanner will never be able find everything.