We are now Really Simple Security!
Read more about our journey.
About Vulnerability Management
Vulnerability Detection
Really Simple Security regularly checks whether your site uses plugins, themes or WP core versions that have known vulnerabilities and categorises vulnerability based on severity.
- Scans for vulnerabilities twice a day.
- Immediately scans newly uploaded themes and plugins.
Vulnerability Notifications
Often a security patch is already available once a vulnerability becomes publicly known. Therefore it is recommended to enable either auto-updates or vulnerability notifications to stay up-to-date.
- Email report
- Admin notice
- Plugin overview warning
Force-Update sequence
Even if you don’t have auto-updates enabled by default, you can configure Really Simple Security to force-update in case of a vulnerability above a certain severity.
- Email warning prior to updating.
- Retries for several days for a security patch to become available.
Quarantine
Properly maintained plugins and themes will have a security patch released well before the vulnerability becomes public knowledge. As a last resort, Really Simple Security can quarantine components affected by critical vulnerabilities, if no patch becomes available.
- Deactivate and quarantines affected plugins or themes.
- Integrates with the force-update measure.
- Email notifications prior to Quarantine.
