FICHA · MANJARO

wpscan

Black box WordPress vulnerability scanner

  • security-tool
  • CLI
  • NETWORK
  • Launchable
  • Runs in terminal
official+codex · reviewed · May 29, 2026 description in en

Description

Scans WordPress sites from the outside to identify known weaknesses, exposed versions, vulnerable plugins, themes, and configuration issues. It is useful for authorized security audits and defensive checks of WordPress installations.

This is a security auditing tool that sends requests to websites. It should be used only on sites you own or have permission to test, and scan results should be handled carefully because they can reveal exploitable details.

How to run

wpscan

Commands: wpscan

Permissions

Permissions not analysed for this source yet.