Vulnerable Plugin Checker
| 开发者 | stormrockwell |
|---|---|
| 更新时间 | 2017年11月16日 22:52 |
| PHP版本: | 4.0 及以上 |
| WordPress版本: | 4.9 |
| 版权: | GPLv2 |
| 版权网址: | 版权信息 |
详情介绍:
This plugin automatically checks installed plugins for known vulnerabilities utilizing WPScan's API and provides optional email alerts.
Features:
- Automatic vulnerability detection in plugins utilizing WPScan's API
- Optional email alerts
- Utilizes WP Cron to check for new security updates twice a day
- Cached API results to decrease backend load time significantly
安装:
Installation & Activation
- Upload the folder "vulnerable-plugin-checker" to your WordPress Plugins Directory (typically "/wp-content/plugins/")
- Activate the plugin on your Plugins Page.
- Suggestion: Install an SMTP plugin such as WP Mail SMTP to prevent potentially dropped emails
- 完成了!
- After activating "Vulnerable Plugin Checker", go to Settings > VPC Settings
- Check off "Allow Email Alerts" and enter your email in "Email Address"
- Click Save Changes
屏幕截图:
更新日志:
0.3.12
- Fixed false positive by adding normalizing to the version number in case WPScan's API adds .0 to the version number
- Now the plugins page only shows only vulnerabilities that affect the current plugin version (suggested by @gbotica)
- Fixed the Settings URL in multiple places (reported by @gbotica)
- Fixed bug where unpatched vulnerabilities were ignored (reported by @pluginvulnerabilities)
- Fixed notice appearing on PHP7+
- fixed bug where it wouldn't display the saved email
- removed sslverify on wp_remote_get
- changed cURL to wp_remote_get
- added vulnerabilities on plugin page
- fixed issue with plugin not pulling from cache
- fixed readme error
- fixed minor email bug
- changed language
- Rewrote the plugin for better performance, readability, and more
- Dismissable error message in all back-end pages if there is a vulnerability
- Added SMTP suggestion to prevent dropped emails
- Removed success notice from plugin page if there are no vulnerabilities
- Fixed a few non-breaking bugs
- Added translatable text and translator comments. Translation help is welcome!
- Added todo.txt to see my plans for future updates.
- Fixed conflicts with Gravity Forms
- Added support for adding multiple email addresses
- Fixed issue where text display appeared on multiple backend pages
- Text display on the plugins page if there are no known vulnerabilities
- Runs a scan when a new plugin is activated
- Fixed issue when a plugin was deleted it would throw an error
- WP 4.5 Support
- Fixed issue when more than one plugin was found vulnerable on plugins.php