Exploit Scanner WordPress Plugin

Last week I was reading the official WordPress blog and I came across an interesting plugin: WordPress Exploit Scanner. It basically scans your database entries and site files looking for suspicious lines of codes. On top of that it also looks for suspicious plugins, posts, pages, users and WordPress settings.

Here is a screenshot:

wordpress-exploit-scanner-plugin

It is worth to run this plugin once in a while, and especially if you believe that a malicious user might have compromised your installation recently or in the past.

Got Your Free eBook?


  • Subscribe to the Daily Blog Tips newsletter and you will be able to download the "Make Money Blogging" eBook for free.
  • You will also receive tips to improve your blog, strategies to make money and useful resources from around the web.
ebook cover

11 Responses to “Exploit Scanner WordPress Plugin”

  1. Stephanie on November 3rd, 2009 3:02 pm

    That’s a great plugin. I’ve been hit by an exploit, and while I was able to find out how to clean it up fairly easily, it’s not fun to waste time on.

  2. Tim Trice on November 3rd, 2009 4:08 pm

    I actually had a hacker, xurguxx or something like that, get into two of my sites along with many others are on my server a couple of weeks ago. Running this plugin revealed he had installed many php scripts in my uploads directory. Obviously, they’ve since been deleted.

    In addition, he managed to delete all of my users so that I could not log in – had to log in from Cpanel. I have no idea how but it is what it is.

    I read the same post you read about this plugin and I fully recommend it. If you have a lot of plugins, though, be aware. It can take a while and not everything it returns is malicious. Use Google to assure before altering code.

  3. Ronald on November 3rd, 2009 5:01 pm

    You might wish to check the link to the plugin in the WordPress plugin directory, now it says:

    WordPress Exploit Scanner

  4. Justin L on November 3rd, 2009 5:35 pm

    You’ll want to fix the hyperlink on the link to the plugin!

    Take care.

  5. Gabe | freebloghelp.com on November 3rd, 2009 6:31 pm

    Never tried it but Exploit Scanner looks like something I could use. Thanks for the heads up!

  6. Ben Lang on November 4th, 2009 1:08 am

    I just wanted to give you a shoutout. You are a remarkable blogger and a role model to me! Thanks so much!
    Sincerely,
    Ben Lang

  7. Dana @ Online Knowledge on November 4th, 2009 2:26 am

    Very useful tool for security purpose. I will try it.

  8. zeesu on November 4th, 2009 10:27 am

    good plugin.once someone hacked my website.it was lot of headache for me.i needed to restore everything from backup

  9. Tinh on November 5th, 2009 12:28 pm

    I know this but do not know how to fix if errors found as I am newbie and non-tech blogger

  10. Keith Davis on November 8th, 2009 2:05 pm

    Looks like a useful plugin… with all this talk of wordpress hackers, I might give it a go.

    Anybody using it out there? Any feedback?

  11. Kent @ Leawo on November 11th, 2009 7:50 am

    I think the best way to turn away hackers is to forbid user upload besides blog administrator. Carefully check the functions which could be used to run malicious scripts or something that can compromise the blog security.
    To come back to this plugin, it is really a useful gadget to examine exploits fast and conveniently. Worth a try. ^_^

Got something to say?





Sponsors

Say Goodbuy to AdSense web directory Performance Based SEO Flex Theme for WordPress 20% Off on Shared Hosting BlueSEO

Recent Articles