Plugin Vulnerabilities - Rating, Reviews, Demo & Download

5 Average out of 3 ratings

Free

Plugin Description

This plugin checks the plugins you have installed against a list of verified security vulnerabilities. If the installed version of a plugin is vulnerable an alert is added to the Installed Plugins page, otherwise details of the vulnerabilities are included on the Plugin Vulnerabilities page.

The plugin also can be set to send out an email to the webmaster if a vulnerability is in the installed version of a plugin, which is useful if update plugins using our Automatic Plugin Updates plugin or some other method outside of the Installed Plugins page.

This plugin’s most important use is to protect against websites being hacked, but it is also helpful when working to determine how a website was hacked during the cleanup process of the hacked website. If your website has been hacked we can help you to clean and secure it.

Because we verify each vulnerability before including it, not all known vulnerabilities are included, but we are increasing the number of included vulnerabilities on a regular basis.

If you want to let us know of a missing vulnerability or if we need to correct something in an included vulnerability, please leave a message in the support forum or send an email to pluginvulnerabilities@whitefirdesign.com. For missing vulnerabilities please include a link to the details of the vulnerability.

Stats (As of March 2, 2015)

• 200 vulnerabilities included
• 54 included vulnerabilities are in the most recent version of plugins (49 of these plugins have been removed from the Plugin Directory)
• 14 vulnerabilities have been fixed in part due to our work on this plugin
• 5 included vulnerabilities in security plugins
• Top vulnerability types:
  • cross-site request forgery (CSRF)/cross-site scripting (XSS): 49 vulnerabilities
  • reflected cross-site scripting (XSS): 39 vulnerabilities
  • unrestricted file upload: 31 vulnerabilities
  • arbitrary file viewing: 16 vulnerabilities
  • SQL injection: 15 vulnerabilities
• Top vulnerability discoverers:
  • dxwsecurity: 27 vulnerabilities
  • Kacper Szurek: 25 vulnerabilities
  • High-Tech Bridge: 10 vulnerabilities
  • HomeLab IT: 6 vulnerabilities
  • Netsparker: 2 vulnerabilities

Screenshots

1. 
   

   Alert Shown on Installed Plugins Page For Vulnerability In Version of Plugin In Use

2. 
   

   Full Listing of Vulnerabilities That Have Existed in Installed Plugins

Similar Plugins:

Simple Googlebot Visit Off Your Site Dominion – Domain Checker For WPBakery