About cookies

This site uses cookies. Learn more about the purpose of their use and ability to change settings for cookies in your browser.

WordPress Checks

acunetix baner 765

With more than 24% of websites on the Internet running WordPress, WordPress security is becoming an increasingly important factor in an organization’s security posture. Unfortunately, thousands of WordPress plugins contain high-severity vulnerabilities which could allow attackers to gain access to the WordPress administrative interface.


Scan for Vulnerable WordPress Plugins

Acunetix identifies WordPress installations, and will launch security tests for WordPress plugins and WordPress core vulnerabilities. The WP plugins detected, are listed in the WordPress plugins Knowledge Base including a description, version number and latest version of plugin to update to.

  • Scans for over 4000 vulnerable WordPress Plugins & Misconfigurations.
  • Detects malware disguised as plugins and old versions of plugins.
  acunetix 17

WP Configuration File Disclosure and Username Enumeration

An administrator might sometimes need to alter certain settings from wp-config.php directly as opposed to the WordPress interface. To do this, a backup of the known working configuration is created, before proceeding with manually altering the file. However, the backed up file then becomes available to whoever is able to guess the name of the backup file.

  • Acunetix checks for a number of possible WordPress configurations.
  • Runs tests for username enumeration of WordPress accounts.
  • Detects use of weak passwords based on a password list and leetspeak.
  acunetix 18

Not just WordPress

Following WordPress, Joomla! and Drupal are among the most widely deployed Content Management Systems (CMSs) and have their own share of vulnerabilities and misconfigurations.

  • Detects vulnerable versions of Joomla!, Drupal and Magento installations.
  • Tests Joomla! Drupal and Magento web applications for known vulnerabilities and misconfigurations.
  • Tips to prevent a WordPress hack.
  acunetix 19