OOPVulns is a modern, accessible WordPress plugin that continuously monitors your site for known security vulnerabilities in WordPress core, plugins, and themes.
Features
- Comprehensive Scanning – Scans WordPress core, all plugins, and all themes for known vulnerabilities
- Explicit Opt-In – Vulnerability scanning is disabled by default and only runs after admin consent
- Automatic Scans – Configurable daily or weekly automatic scanning
- Email Notifications – Get notified when vulnerabilities are detected
- Modern Dashboard – Clean, accessible admin interface with detailed vulnerability information
- Severity Indicators – Color-coded severity levels (Critical, High, Medium, Low)
- Update Guidance – See which vulnerabilities have fixes available
How It Works
The plugin checks your installed WordPress core version, plugin versions, and theme versions against the OOPSpam vulnerability database. When a known vulnerability is found, you’ll see it in the dashboard and optionally receive an email notification.
External Service
This plugin connects to the OOPSpam API to retrieve vulnerability information. When a scan runs, the following data is sent:
- WordPress core version
- Plugin slugs and versions
- Theme slugs and versions
No personal data, user information, or site content is transmitted. Vulnerability API checks are disabled by default and only run after an administrator explicitly enables scanning in plugin settings.