{"id":338189,"date":"2026-07-17T17:10:17","date_gmt":"2026-07-17T17:10:17","guid":{"rendered":"https:\/\/wordpress.org\/plugins\/enhanceo-security-audit\/"},"modified":"2026-07-17T20:04:11","modified_gmt":"2026-07-17T20:04:11","slug":"enhanceo-security-audit","status":"publish","type":"plugin","link":"https:\/\/wordpress.org\/plugins\/enhanceo-security-audit\/","author":14064965,"comment_status":"closed","ping_status":"closed","template":"","meta":{"version":"1.0.0","stable_tag":"1.0.0","tested":"7.0.2","requires":"6.8","requires_php":"8.0","requires_plugins":null,"header_name":"Elevoire Security Audit","header_author":"Elevoire","header_description":"A read-only security auditing plugin for WordPress. Scans your site, detects security issues, explains the risks, and recommends fixes. Never modifies your site.","assets_banners_color":"979aa4","last_updated":"2026-07-17 20:04:11","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"https:\/\/wordpress.org\/plugins\/enhanceo-security-audit\/","header_author_uri":"http:\/\/elevoire.com\/","rating":0,"author_block_rating":0,"active_installs":0,"downloads":34,"num_ratings":0,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":{"1.0.0":{"tag":"1.0.0","author":"hassanraza","date":"2026-07-17 20:04:11"}},"upgrade_notice":{"1.0.0":"<p>Initial release.<\/p>"},"ratings":[],"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":3612000,"resolution":"128x128","location":"assets","locale":"","width":128,"height":128},"icon-256x256.png":{"filename":"icon-256x256.png","revision":3612000,"resolution":"256x256","location":"assets","locale":"","width":256,"height":256}},"assets_banners":{"banner-1544x500.png":{"filename":"banner-1544x500.png","revision":3612000,"resolution":"1544x500","location":"assets","locale":"","width":1544,"height":499},"banner-772x250.png":{"filename":"banner-772x250.png","revision":3612000,"resolution":"772x250","location":"assets","locale":"","width":772,"height":250}},"assets_blueprints":{},"all_blocks":[],"tagged_versions":["1.0.0"],"block_files":[],"assets_screenshots":[],"screenshots":{"1":"Security Audit Dashboard with overall score and summary","2":"Detailed scan results with expandable findings","3":"Filter and search across results","4":"Previous Reports list"}},"plugin_section":[],"plugin_tags":[8533,31093,6464,600,6460],"plugin_category":[54],"plugin_contributors":[269240],"plugin_business_model":[],"class_list":["post-338189","plugin","type-plugin","status-publish","hentry","plugin_tags-audit","plugin_tags-hardening","plugin_tags-scanner","plugin_tags-security","plugin_tags-vulnerability","plugin_category-security-and-spam-protection","plugin_contributors-hassanraza","plugin_committers-hassanraza"],"banners":{"banner":"https:\/\/ps.w.org\/enhanceo-security-audit\/assets\/banner-772x250.png?rev=3612000","banner_2x":"https:\/\/ps.w.org\/enhanceo-security-audit\/assets\/banner-1544x500.png?rev=3612000","banner_rtl":false,"banner_2x_rtl":false},"icons":{"svg":false,"icon":"https:\/\/ps.w.org\/enhanceo-security-audit\/assets\/icon-128x128.png?rev=3612000","icon_2x":"https:\/\/ps.w.org\/enhanceo-security-audit\/assets\/icon-256x256.png?rev=3612000","generated":false},"screenshots":[],"raw_content":"<!--section=description-->\n<p><strong>Elevoire Security Audit<\/strong> is a production-ready, read-only WordPress security auditing plugin. It scans your site for security misconfigurations, outdated software, and dangerous settings \u2014 then explains what each issue means and how to fix it.<\/p>\n\n<p><strong>The plugin NEVER:<\/strong>\n* Modifies your site or its settings\n* Acts as a firewall or removes malware\n* Sends any data to external servers\n* Collects analytics or user information<\/p>\n\n<p>Its only job is to <strong>audit, analyse, and educate<\/strong>.<\/p>\n\n<h4>What it scans<\/h4>\n\n<ul>\n<li>WordPress Core version and debug mode<\/li>\n<li>File editing and SSL admin settings<\/li>\n<li>Version exposure and exposed default files<\/li>\n<li>XML-RPC and WP-Cron configuration<\/li>\n<li>User accounts and the default \"admin\" username<\/li>\n<li>Login page HTTPS and Application Passwords<\/li>\n<li>Outdated and inactive plugins and themes<\/li>\n<li>File permissions (wp-config.php, .htaccess, uploads)<\/li>\n<li>PHP version and dangerous PHP settings<\/li>\n<li>HTTP Security Headers (CSP, HSTS, X-Frame-Options, etc.)<\/li>\n<li>SSL\/HTTPS certificate status<\/li>\n<li>Database prefix and autoloaded options size<\/li>\n<\/ul>\n\n<h4>Security Score<\/h4>\n\n<p>Every scan produces an overall Security Score (0\u2013100) with a breakdown by severity: Critical, High, Medium, Low, and Passed checks.<\/p>\n\n<h4>Detailed Findings<\/h4>\n\n<p>Each finding includes:\n* Status and severity\n* What was found\n* Why it matters (risk explanation)\n* Recommended fix<\/p>\n\n<h4>Reports<\/h4>\n\n<p>Stores all scan reports in your database so you can compare security posture over time. You can view or delete any report at any time from the Reports page.<\/p>\n\n<!--section=installation-->\n<ol>\n<li>Upload the <code>enhanceo-security-audit<\/code> folder to <code>\/wp-content\/plugins\/<\/code><\/li>\n<li>Activate the plugin through the <strong>Plugins<\/strong> screen in WordPress<\/li>\n<li>Go to <strong>Security Audit<\/strong> in your WordPress admin menu<\/li>\n<li>Click <strong>Run Full Scan<\/strong><\/li>\n<\/ol>\n\n<!--section=faq-->\n<dl>\n<dt id=\"does%20this%20plugin%20fix%20security%20issues%20automatically%3F\"><h3>Does this plugin fix security issues automatically?<\/h3><\/dt>\n<dd><p>No. This plugin is read-only. It identifies issues and recommends fixes, but never modifies your site. This is intentional \u2014 automated changes to security settings can break sites.<\/p><\/dd>\n<dt id=\"will%20running%20a%20scan%20slow%20down%20my%20site%3F\"><h3>Will running a scan slow down my site?<\/h3><\/dt>\n<dd><p>Scans run in the WordPress admin only and never affect your front-end. Full scans may take a few seconds depending on the number of plugins and themes installed.<\/p><\/dd>\n<dt id=\"does%20the%20plugin%20send%20my%20data%20anywhere%3F\"><h3>Does the plugin send my data anywhere?<\/h3><\/dt>\n<dd><p>No. All scan data stays in your WordPress database. The plugin never communicates with external servers.<\/p><\/dd>\n<dt id=\"is%20this%20plugin%20safe%20to%20use%20on%20a%20production%20site%3F\"><h3>Is this plugin safe to use on a production site?<\/h3><\/dt>\n<dd><p>Yes. The plugin is read-only, loads only in wp-admin, and follows all WordPress security best practices.<\/p><\/dd>\n\n<\/dl>\n\n<!--section=changelog-->\n<h4>1.0.0<\/h4>\n\n<ul>\n<li>Initial release<\/li>\n<\/ul>","raw_excerpt":"Read-only WordPress security auditing plugin. Scans for security issues, explains the risks, and recommends fixes.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/338189","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=338189"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/hassanraza"}],"wp:attachment":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=338189"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=338189"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=338189"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=338189"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=338189"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=338189"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}