Know your website is protected from the #1 reason WordPress sites
get hacked.
The EASY WAY TO SCAN FOR wordpress security vulnerabilities
You deserve peace of mind when it comes to your WordPress website, and iThemes Security Site Scan is here to help. Our Site Scan checks several key areas that make your website vulnerable to hackers. With iThemes Security Site Scan, scanning for vulnerable WordPress plugins, themes, and WordPress core versions is faster and more thorough than ever before.
Vulnerable plugins, themes, and WordPress core versions are your website’s biggest security risk.
Hackers can access your site through vulnerabilities in WordPress plugins and themes. Vulnerabilities can exist when developers release new versions of plugins or themes without addressing a known security issue in a previous version. Hackers know this and actively search for these weaknesses to gain access to your site.
WordPress-RELATED vulnerabilities in 2022
Our annual WordPress Vulnerability Report analyzes trends in all vulnerabilities discovered in plugins, themes, and WordPress core.
OF vulnerabilities were
high to critical in 2022
Nearly a third of all disclosed vulnerabilities indicated high-level security threats, indicating website owners need to take urgent action.
OF plugin & Theme vulnerabilities remainED unpatched in 2022
A quarter of plugin and theme vulnerabilities remain unfixed by developers, leaving websites with vulnerable code.
Never worry about running a vulnerable plugin or theme again.
Make sure your site is protected from hackers… without wasting hours checking plugin versions and WordPress core versions. With the iThemes Security Site Scan, you’ll know every time something on your site is vulnerable and needs updating. And even better… it will automatically run those updates for you too!
Scans Your Website Twice a Day for Vulnerabilities
Your website’s plugins, themes, and WordPress core versions are checked against the Patchstack Vulnerability Database for the latest vulnerability disclosures.
Automatically Updates if a Security Fix is Available
Paired with Version Management, iThemes Security will automatically update a plugin, theme, or WordPress core version if it has a vulnerability.
Emails You if Site Scan Detects a Vulnerability
You can receive an email report if your site is running vulnerable versions of a plugin, theme, or WordPress core. Customize the email addresses that receive scan results.

Powered by the most comprehensive vulnerability database available
iThemes Security checks your site for known vulnerabilities to alert you to potential problems before hackers can find them. We partner with expert security researchers at Patchstack who curate a database of over 30,000 vulnerabilities so you’ll always be the first to know — and to take action.
Checks if your site is listed on Google’s Blocklist
Integrated with Google Safe Browsing API, the Site Scan feature also scans your website to make sure your website isn’t on Google’s blocklist due to malware or phishing. And if Google has flagged your website as infected with malware, Site Scan sends you an email alert letting you know immediately so you can take action fast to clean up your site.

Get updates and alerts about the security of your website
You can have Site Scan results emailed to you each time a scan detects a new vulnerability so that you know its status at all times. You can even customize who gets those emails, and add other admins who need to know scan results.

Get Started with iThemes Security Pro Today
(YOU’LL BE GLAD YOU DID!)
All iThemes Security Pro plans come with a 30-day money-back guarantee.
We stand behind our product 100% – see our refund policy