Plugin Security Scanner
This plugin alerts you if any of your plugins have security vulnerabilities. It does this by utilising the WPScan Vulnerability Database once a day.
4.9(7 reviews)
·800 active installs·Updated 6 years agoAs of April 2026, Plugin Security Scanner is a WordPress secure plugin with 800 active installations and a 4.9/5 rating from 7 reviews. It has been downloaded 70K+ times in total. Requires WordPress false+ and PHP false+. Available on WordPress.org since 2015. Last updated 6 years ago — may have compatibility concerns. Top alternative: BBQ Firewall – Fast & Powerful Firewall….
4.9/57 reviews
800active installs
70K+total downloads
11 yearssince 2015
Overview
This plugin determines whether any of your plugins or themes have security vulnerabilities. It does this by looking up details in the WPScan Vulnerability Database.
It will run a scan once a day, and e-mail the administrator if any vulnerable plugins or themes are found.
Please note: As from version 2.0.0, you will need to register on the WPScan Vulnerability Database site in order to get an API token. This token is required before any security scans can be performed. Once you have your token, it can be added to the Plugin Security Scanner settings page.
You can also register a webhook for notifications. The webhook will trigger daily, even if no vulnerabilities found. The webhook is a post request, with JSON payload containing the vulnerabilities.
You can enable the webhook under Sett…
Screenshots
Ratings & Reviews
4.97 reviews
5 ★
6
4 ★
1
3 ★
0
2 ★
0
1 ★
0
Compatibility
| WordPress | false+ requiredTested up to 5.2.24 |
| PHP | false+ required |
Top Alternatives to Plugin Security Scanner
Frequently Asked Questions
Changelog
2.0.2
- Clarified 403 error
Contributors
Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.