Public WordPress exposure
Detects WordPress and version exposure from public signals only.
HTTPS & security headers
Reviews HTTPS, redirects, and key hardening headers.
Visible plugin/theme traces
Reads plugin/theme references already present on public pages.
PowerSEC vulnerability hints
Cross-checks detected components against the PowerSEC advisory database.
External checks can only see what is publicly visible. PowerSEC can verify exact plugin versions, malware findings, backup health, and restore points after you connect your site.
What PowerSEC verifies after you connect
Exact installed plugin & theme versions
Vulnerable components matched to your versions
Server-side malware & suspicious file changes
Backup health, cloud restore points & restore readiness
Login/brute-force protection, 2FA & firewall
An AI action plan prioritised for your site