Enterprise-strength WordPress protection for everyone

Be the first to know about vulnerabilities affecting your WordPress installation, plugins, and themes.

WPScan result example

Trusted by enterprise & small businesses

Penguin Random House
Mercedes Benz Group
University of North Carolina

A tiny plugin that timely reports vulnerable themes and plugins installed on your website. Effective and very easy to use - must have!


Very helpful! It saves hours of work, and still it's pretty simple to use

Kenny Moore

Cataloging 38,428 WordPress Core, Plugin, and Theme Vulnerabilities

Continously updated by leading WordPress security professionals.

10 Years icon

Collecting WordPress vulnerabilities for over 10 years

Dedicated team icon

Dedicated team of WordPress security experts

Monitor web icon

Continually monitoring the web for new vulnerabilities

Vulnerabilities counter icon

Flexible API that streamlines your workflow

Security Solutions For Everyone


WordPress protection with custom solutions for large enterprises.
  • Custom pricing by number of sites
  • Instant email alerts
  • Vulnerabilities details by ID
  • Latest API endpoints
  • Webhooks: Slack & HTTP
  • Description & PoC API data
  • CVSS Risk Scores

Small Business

For most sites, we recommend Jetpack Protect — the partner product of WPScan, by Automattic. It has all the power of WPScan with an easy-to-use interface.
  • Automated daily scanning
  • Recommended fixes

Researchers can use the CLI tool to make 75 API requests per day. Get started

View all FAQ

View our Enterprise Terms of Service