Does Exploit Scanner for Active Theme have any unpatched vulnerabilities?

No. All known vulnerabilities in Exploit Scanner for Active Theme have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Exploit Scanner for Active Theme compatible with WordPress 4.8.28?

According to WordPress.org data, Exploit Scanner for Active Theme 1.0.5 has been tested up to WordPress 4.8.28. Check the plugin's changelog for the latest compatibility information.

How often is Exploit Scanner for Active Theme updated?

Exploit Scanner for Active Theme was last updated on Sep 6, 2016. Frequent updates are generally a positive security signal.

What is Exploit Scanner for Active Theme's security score?

Exploit Scanner for Active Theme has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Exploit Scanner for Active Theme Security & Risk Analysis

wordpress.org/plugins/exploit-scanner-for-active-theme

Detects whether your theme files have fallen victim to malicious hackers.

20 active installs v1.0.5 PHP + WP 4.4+ Updated Sep 6, 2016

crackexploithackhackingscanner

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Exploit Scanner for Active Theme Safe to Use in 2026?

Generally Safe

Score 85/100

Exploit Scanner for Active Theme has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The 'exploit-scanner-for-active-theme' v1.0.5 plugin exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of known CVEs and a lack of critical findings in taint analysis are significant positive indicators. The plugin demonstrates good practice by implementing nonce checks and capability checks for its AJAX handlers, and all SQL queries are secured using prepared statements. Furthermore, the limited number of entry points and the lack of REST API routes, shortcodes, or cron events contribute to a reduced attack surface.

Key Concerns

One file operation without specific context
One third of outputs not properly escaped

Vulnerabilities

None known

Exploit Scanner for Active Theme Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Exploit Scanner for Active Theme Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

67% escaped3 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<index> (index.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Exploit Scanner for Active Theme Attack Surface

Entry Points3

Unprotected0

AJAX Handlers 3

authwp_ajax_px_theme_scanner_hashesindex.php:42

authwp_ajax_px_theme_scanner_checkindex.php:43

authwp_ajax_px_theme_scanner_uploadindex.php:44

WordPress Hooks 4

actionadmin_menuindex.php:39

actionadmin_enqueue_scriptsindex.php:40

actionadmin_enqueue_scriptsindex.php:41

actionplugins_loadedindex.php:45

Maintenance & Trust

Exploit Scanner for Active Theme Maintenance & Trust

Maintenance Signals

WordPress version tested4.8.28

Last updatedSep 6, 2016

PHP min version

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

Exploit Scanner for Active Theme Alternatives

Exploit Scanner

exploit-scanner

Search the files and database of your WordPress install for signs that may indicate that it has fallen victim to malicious hackers.

9K 1 CVE

Injection Guard

injection-guard

This plugin blocks all unauthorized and irrelevant requests through query strings and provides extended session tracking and capability audit.

1K 6 CVEs

Gauntlet Security

gauntlet-security

Performs a detailed security analysis of your WordPress installation. Provides specific instructions on how to make your site more secure.

70 No CVEs

WP-Sentinel

wp-sentinel

A wordpress security system plugin which will check every HTTP request against a given set of rules to filter out malicious requests.

60 No CVEs

Proxy Hacking Protection

ph-protection

To prevent a reduction in the search results by the replication of illegal content.

20 No CVEs

Developer Profile

Exploit Scanner for Active Theme Developer Profile

Tauno Hanni

3 plugins · 330 total installs

trust score

Avg Security Score

87/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect Exploit Scanner for Active Theme

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/exploit-scanner-for-active-theme/js/custom.js/wp-content/plugins/exploit-scanner-for-active-theme/css/styles.css

Script Paths

/wp-content/plugins/exploit-scanner-for-active-theme/js/custom.js

HTML / DOM Fingerprints

CSS Classes

px-theme-scanner-hashespx-theme-scanner-scanpx-theme-scanner-resultscard-toolshas-hashes

Data Attributes

data-action="pxNewHashes"data-action="pxScanHashes"data-action="pxUploadJSON"

JS Globals

pxThemeScannerVars

REST Endpoints

/wp-json/wp/v2/posts/wp-json/wp/v2/pages/wp-json/wp/v2/media/wp-json/wp/v2/categories/wp-json/wp/v2/tags/wp-json/wp/v2/users/wp-json/wp/v2/comments/wp-json/wp/v2/types/wp-json/wp/v2/taxonomies/wp-json/wp/v2/settings/wp-json/wp/v2/themes/wp-json/wp/v2/plugins/wp-json/wp/v2/search/wp-json/wp/v2/block-renderer/wp-json/wp/v2/menu-locations/wp-json/wp/v2/menus/wp-json/wp/v2/menu-items/wp-json/wp/v2/term/wp-json/wp/v2/terms

FAQ