Scan your Wordpress blog for vulnerabilities

Posted by Martin in Online Services, The Web  Tags: , , ,

9

Jul


Site owners should always be aware of the possibility that their blog gets compromised. This can be because of an old version of Wordpress that is installed or because of vulnerabilities in plugins or themes. It is relatively time consuming to check for updates and stay up to date to make it unlikely that someone would be able to hack your blog.

The online security script Wordpress Scanner is a great tool which can be used to scan your Wordpress blog for several vulnerabilities such as outdated versions of Wordpress or single files and XSS vulnerabilities in themes. All you need to do is add the line in the header of your blog so that the Wordpress Scanner cgi script can access the information and knows that you are indeed the owner of the blog.

This tool is not perfect but it analyzes the versions of your Wordpress files which is probably the dominant attack vector when it comes to Wordpress hacking and basic XSS vulnerabilities in the themes. The tool gives advice if vulnerabilities have been found on how to fix them.

Just make sure you run the script, follow the guidelines and remove the wpscanner entry from your header again. You would not want someone else to be able to check your blog for vulnerabilities, would not you ? This is a great little script which should become even better when the author adds checks for plugins.

Top Free Download: Start Free PC stability Scan

5 Users Commented In This Post

Subscribe To This Post Comment Rss Or TrackBack URL
MyAvatars 0.2
Futilidade Pública » Proteja seu blog em Wordpress | Não é pessoal, não é de tecnologia, não é de _orra nenhuma. says, July 9th, 2007   

[...] Via Ghacks. [...]

MyAvatars 0.2
gnome says, July 9th, 2007   

No Blogger version then?

MyAvatars 0.2
links for 2007-07-12 — Alpesh Nakars’ Blogosphere says, July 12th, 2007   

[...] Scan your Wordpress blog for vulnerabilities The online security script Wordpress Scanner is a great tool which can be used to scan your Wordpress blog for several vulnerabilities such as outdated versions of Wordpress or single files and XSS vulnerabilities in themes. (tags: wordpress wordpressmods) If you enjoyed reading this post, you may want to check out other related posts listed hereunder. Browse through the site and grab some free tech bytes. And don’t forget to subscribe to my rss feeds or updates via email. Visit here for subscription options that suit you. [...]

MyAvatars 0.2
Check Your WordPress Blog For Security Vulnerabilities | One Tip A Day says, July 12th, 2007   

[...] gHacks e9 = new Object(); e9.size = “468×60″; e9.noAd = 1; Share This | Leave A Comment (0) | [...]

MyAvatars 0.2
„Patikrinimas iki 15 val.“ : nežinau.lt says, August 3rd, 2007   

[...] standartams. Saugumo tai nepridÄ—s, bet tvarkos ir suderinamumo su narÅ¡yklÄ—mis – turÄ—tų. Dar radau, kad galima pasitikrinti tinklaraÅ¡Ä?io ir jo Å¡ablonų saugumÄ… nuo XSS antpuolių su WordPress [...]

Leave Your Comments Below
Hello, please leave your thought below

Please Note: Comments may need to approved by admin. so there's no need to resubmit your comments.