Exploit Scanner
Search the files and database of your WordPress install for signs that may indicate that it has fallen victim to malicious hackers.
3.2(40 reviews)
·9.0K+ active installs·Updated 8 years agoAs of April 2026, Exploit Scanner is a WordPress hack plugin with 9.0K+ active installations and a 3.2/5 rating from 40 reviews. It has been downloaded 1.1M+ times in total. Requires WordPress 3.3+ and PHP false+. Available on WordPress.org since 2008. Last updated 8 years ago — may have compatibility concerns. Downloads are down 15% this week. Top alternative: WP Limit Login Attempts.
3.2/540 reviews
9.0K+active installs
1.1M+total downloads
18 yearssince 2008
Overview
This plugin searches the files on your website, and the posts and comments tables of your database for anything suspicious. It also examines your list of active plugins for unusual filenames.
It does not remove anything. That is left to the user to do.
Latest MD5 hash values for Exploit Scanner:
- 17e2ccfc834d691bc68cc5c64f9bed89 exploit-scanner.php (1.5.2)
- 1d5f9d6220fe159cd44cb70a998a1cd7 hashes-4.6.php
- fbdf61c17f65094c8e331e1e364acf68 hashes-4.6.1.php
- 477d128d84802e3470cec408424a8de3 hashes-4.7.php
- d53210f999847fbd6f5a2ecac0ad42f2 hashes-4.7.5.php
Latest SHA1 hash values for Exploit Scanner:
- 1decc1e47a53d1cab9e8f1ef15b31682198367ee exploit-scanner.php (1.5.2)
- 5cec64380a2acdc876fd22fbbbbf8c335df1ed3f hashes-4.6.php
- 99d9e7be23a350f3d1962d0f41e7b4e28c00841e hashes-4.6.1.php
- 1eeab3…
Ratings & Reviews
3.240 reviews
5 ★
18
4 ★
4
3 ★
1
2 ★
3
1 ★
14
Recent Reviews
830 matches in a clean installation
by Antonio Augusto·4 years ago
Apparently abandoned or confuse.
- This topic was modified 4 years, 11 months ago by Antonio Augusto.
Doesn´t work at all
by C77·6 years ago
Doesn´t work at all… it always shows an error, try later.
Doesn’t work
by scorpiotiger·7 years ago
Just gives an error:
{“status”:”error”,”message”:”$this->files was not an array”,”data”:{“start”:250,”files”:”b:0;”}}
Others have posted in the support section and not had responses and the plugin has not been updated for a long time, so it looks to be an abandoned project.
Am I a paranoid?
by carolzeroum·8 years ago
Exploit Scanner is a useless plugin.
I mean, it does nothing.
It just lists hundreds of files of your server.
Says nothing about them.
And does nothing either.
In the end, it says you are a PARANOID.
If you have any further worries.
I think I will create a WordPress plugin too.
Great security scan plugin but..
by Eduard Doloc·8 years ago
Great plugin, but it’s not well documented.
Anyways, it works on version 4.8.3 and theoretically any version as long as you generate (if you don’t have) the hashes for your wordpress version; in my case I had to generate for 4.8.3 and it did a good job 🙂
Download Trends
Today: 7Yesterday: 11This week: 68Period total: 3K
Compatibility
| WordPress | 3.3+ requiredTested up to 4.7.33 |
| PHP | false+ required |
Version Adoption
v1.5
86.5%
v1.3
6.8%
v1.4
5.9%
Other
0.7%
Top Alternatives to Exploit Scanner
Frequently Asked Questions
Changelog
1.5.2
- Added hashes for WordPress 4.7.5
Contributors
Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.