Does TotalWeb – Security, Firewall & Malware Scanner have any unpatched vulnerabilities?

No. All known vulnerabilities in TotalWeb – Security, Firewall & Malware Scanner have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is TotalWeb – Security, Firewall & Malware Scanner compatible with WordPress 6.9.4?

According to WordPress.org data, TotalWeb – Security, Firewall & Malware Scanner 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is TotalWeb – Security, Firewall & Malware Scanner compatible with PHP 7.4+?

TotalWeb – Security, Firewall & Malware Scanner requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is TotalWeb – Security, Firewall & Malware Scanner updated?

TotalWeb – Security, Firewall & Malware Scanner was last updated on Dec 8, 2025. Frequent updates are generally a positive security signal.

What is TotalWeb – Security, Firewall & Malware Scanner's security score?

TotalWeb – Security, Firewall & Malware Scanner has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

TotalWeb – Security, Firewall & Malware Scanner Security & Risk Analysis

wordpress.org/plugins/totalweb-security-firewall-malware-scanner

TotalWeb strengthens your site security with malware defense, brute-force protection, firewall rules, and smart hardening controls.

0 active installs v1.0.0 PHP 7.4+ WP 5.0+ Updated Dec 8, 2025

brute-forcefirewallhardeningmalwaresecurity

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is TotalWeb – Security, Firewall & Malware Scanner Safe to Use in 2026?

Generally Safe

Score 100/100

TotalWeb – Security, Firewall & Malware Scanner has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The plugin 'totalweb-security-firewall-malware-scanner' v1.0.0 exhibits a mixed security posture. On the positive side, it boasts a clean vulnerability history with zero known CVEs, and the static analysis indicates good practices in terms of output escaping (91%) and the use of prepared statements for SQL queries (70%). The plugin also incorporates a substantial number of nonce and capability checks, suggesting an effort to secure its operations.

However, several areas present significant concerns. The plugin has a considerable attack surface with 34 AJAX handlers, 10 of which lack authentication checks. Furthermore, the taint analysis revealed 10 flows with unsanitized paths, with 8 of these flagged as high severity. This combination of unprotected entry points and high-severity taint flows points to potential vulnerabilities that could be exploited by attackers.

While the absence of past vulnerabilities is reassuring, it does not guarantee future security, especially given the identified code weaknesses. The plugin's strengths lie in its SQL handling and output escaping, but the critical weaknesses in AJAX security and taint flows require immediate attention. Overall, the plugin has potential for exploitation due to its unprotected AJAX handlers and high-severity taint flows, despite its otherwise decent code hygiene.

Key Concerns

Unprotected AJAX handlers
High severity unsanitized paths
Unprotected REST API routes (though none without permission callbacks, the numbe
SQL queries not using prepared statements (30% of 214)
Output not properly escaped (9% of 1532)
File operations
External HTTP requests

Vulnerabilities

None known

TotalWeb – Security, Firewall & Malware Scanner Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

TotalWeb – Security, Firewall & Malware Scanner Code Analysis

Dangerous Functions

Raw SQL Queries

150 prepared

Unescaped Output

142

1390 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

70% prepared214 total queries

Output Escaping

91% escaped1532 total outputs

Data Flows

10 unsanitized

Data Flow Analysis

25 flows10 with unsanitized paths

<class-settings-page> (modules\admin-ui\class-settings-page.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

10 unprotected

TotalWeb – Security, Firewall & Malware Scanner Attack Surface

Entry Points38

Unprotected10

AJAX Handlers 34

authwp_ajax_twebsec_export_settingsmodules\admin-ui\class-settings-page.php:21

authwp_ajax_twebsec_disable_securitymodules\admin-ui\class-settings-page.php:22

authwp_ajax_twebsec_reset_settingsmodules\admin-ui\class-settings-page.php:23

authwp_ajax_twebsec_backup_databasemodules\file-db-security\class-file-db-security.php:166

authwp_ajax_twebsec_scan_for_file_changesmodules\file-db-security\class-file-db-security.php:167

authwp_ajax_twebsec_get_file_change_logsmodules\file-db-security\class-file-db-security.php:168

authwp_ajax_twebsec_get_scan_progressmodules\file-db-security\class-file-db-security.php:169

authwp_ajax_twebsec_clear_file_change_logsmodules\file-db-security\class-file-db-security.php:170

authwp_ajax_twebsec_reset_baselinemodules\file-db-security\class-file-db-security.php:171

authwp_ajax_twebsec_verify_2famodules\login-security\class-login-security.php:59

noprivwp_ajax_twebsec_verify_2famodules\login-security\class-login-security.php:60

authwp_ajax_twebsec_verify_2fa_backup_codemodules\login-security\class-login-security.php:62

noprivwp_ajax_twebsec_verify_2fa_backup_codemodules\login-security\class-login-security.php:63

authwp_ajax_twebsec_generate_qr_codemodules\login-security\class-login-security.php:65

noprivwp_ajax_twebsec_generate_qr_codemodules\login-security\class-login-security.php:66

authwp_ajax_twebsec_generate_new_otp_secretmodules\login-security\class-login-security.php:77

authwp_ajax_twebsec_refresh_otpmodules\login-security\class-login-security.php:78

authwp_ajax_twebsec_export_settingstrunk\modules\admin-ui\class-settings-page.php:21

authwp_ajax_twebsec_disable_securitytrunk\modules\admin-ui\class-settings-page.php:22

authwp_ajax_twebsec_reset_settingstrunk\modules\admin-ui\class-settings-page.php:23

authwp_ajax_twebsec_backup_databasetrunk\modules\file-db-security\class-file-db-security.php:166

authwp_ajax_twebsec_scan_for_file_changestrunk\modules\file-db-security\class-file-db-security.php:167

authwp_ajax_twebsec_get_file_change_logstrunk\modules\file-db-security\class-file-db-security.php:168

authwp_ajax_twebsec_get_scan_progresstrunk\modules\file-db-security\class-file-db-security.php:169

authwp_ajax_twebsec_clear_file_change_logstrunk\modules\file-db-security\class-file-db-security.php:170

authwp_ajax_twebsec_reset_baselinetrunk\modules\file-db-security\class-file-db-security.php:171

authwp_ajax_twebsec_verify_2fatrunk\modules\login-security\class-login-security.php:59

noprivwp_ajax_twebsec_verify_2fatrunk\modules\login-security\class-login-security.php:60

authwp_ajax_twebsec_verify_2fa_backup_codetrunk\modules\login-security\class-login-security.php:62

noprivwp_ajax_twebsec_verify_2fa_backup_codetrunk\modules\login-security\class-login-security.php:63

authwp_ajax_twebsec_generate_qr_codetrunk\modules\login-security\class-login-security.php:65

noprivwp_ajax_twebsec_generate_qr_codetrunk\modules\login-security\class-login-security.php:66

authwp_ajax_twebsec_generate_new_otp_secrettrunk\modules\login-security\class-login-security.php:77

authwp_ajax_twebsec_refresh_otptrunk\modules\login-security\class-login-security.php:78

REST API Routes 4

GET/wp-json/twebsec/v1/audit-logs/exportmodules\audit-logs\class-audit-logger.php:175

GET/wp-json/twebsec/v1/logsmodules\monitoring\class-monitoring.php:54

GET/wp-json/twebsec/v1/audit-logs/exporttrunk\modules\audit-logs\class-audit-logger.php:175

GET/wp-json/twebsec/v1/logstrunk\modules\monitoring\class-monitoring.php:54

WordPress Hooks 282

actionadmin_enqueue_scriptsbootstrap\class-plugin.php:117

actionadmin_menuincludes\helpers\class-menu-manager.php:14

actionadmin_enqueue_scriptsmodules\admin-ui\class-admin-ui.php:17

actionlogin_enqueue_scriptsmodules\admin-ui\class-admin-ui.php:18

actionwp_enqueue_scriptsmodules\admin-ui\class-admin-ui.php:19

actionadmin_noticesmodules\admin-ui\class-admin-ui.php:20

actionadmin_initmodules\admin-ui\class-admin-ui.php:24

actiontemplate_redirectmodules\admin-ui\class-admin-ui.php:57

actionwp_enqueue_scriptsmodules\admin-ui\class-admin-ui.php:70

actionadmin_initmodules\admin-ui\class-settings-page.php:20

actionadmin_initmodules\audit-logs\class-audit-logger.php:67

actionrest_api_initmodules\audit-logs\class-audit-logger.php:69

actiontwebsec_daily_cronmodules\audit-logs\class-audit-logger.php:71

actionadmin_initmodules\audit-logs\class-login-logs.php:25

actionadmin_initmodules\file-db-security\class-file-db-security.php:159

actionadmin_initmodules\file-db-security\class-file-db-security.php:160

actioninitmodules\file-db-security\class-file-db-security.php:162

actioninitmodules\file-db-security\class-file-db-security.php:164

actiontwebsec_file_change_scanmodules\file-db-security\class-file-db-security.php:174

actiontwebsec_run_malware_scanmodules\file-db-security\class-file-db-security.php:176

filtercron_schedulesmodules\file-db-security\class-file-db-security.php:179

actiontwebsec_db_backupmodules\file-db-security\class-file-db-security.php:181

filterxmlrpc_enabledmodules\file-db-security\class-file-db-security.php:1669

filterthe_generatormodules\file-db-security\class-file-db-security.php:1678

filterupload_mimesmodules\file-db-security\class-file-db-security.php:1689

filterwp_handle_upload_prefiltermodules\file-db-security\class-file-db-security.php:1690

actiontemplate_redirectmodules\file-db-security\class-file-db-security.php:1811

actioninitmodules\file-db-security\class-file-db-security.php:1957

actiontemplate_redirectmodules\firewall\class-access-control.php:21

actionpreprocess_commentmodules\firewall\class-access-control.php:22

actioninitmodules\firewall\class-access-control.php:23

actionrest_api_initmodules\firewall\class-access-control.php:25

actioninitmodules\firewall\class-access-control.php:26

actionadmin_initmodules\firewall\class-access-control.php:49

actioninitmodules\firewall\class-access-control.php:51

actioninitmodules\firewall\class-access-control.php:52

actioninitmodules\firewall\class-access-control.php:53

actioninitmodules\firewall\class-access-control.php:54

actioninitmodules\firewall\class-access-control.php:55

actioninitmodules\firewall\class-access-control.php:56

actionadmin_initmodules\firewall\class-access-control.php:57

actionwp_insert_commentmodules\firewall\class-access-control.php:58

actionwpmodules\firewall\class-access-control.php:706

filterrest_authentication_errorsmodules\firewall\class-access-control.php:1069

actioninitmodules\hardening\class-hardening.php:12

actionadmin_initmodules\hardening\class-hardening.php:14

actionsend_headersmodules\hardening\class-hardening.php:16

actionadmin_post_twebsec_hardening_wizardmodules\hardening\class-hardening.php:18

actionwp_footermodules\login-security\class-captcha.php:72

actionlogin_formmodules\login-security\class-captcha.php:173

actionwoocommerce_login_formmodules\login-security\class-captcha.php:174

actionregister_formmodules\login-security\class-captcha.php:175

actionlostpassword_formmodules\login-security\class-captcha.php:176

actionresetpass_formmodules\login-security\class-captcha.php:177

filterwp_authenticate_usermodules\login-security\class-captcha.php:179

actionuser_registermodules\login-security\class-captcha.php:186

actionlostpassword_postmodules\login-security\class-captcha.php:193

actionvalidate_password_resetmodules\login-security\class-captcha.php:199

actioncomment_form_after_fieldsmodules\login-security\class-captcha.php:205

actioncomment_form_logged_in_aftermodules\login-security\class-captcha.php:206

filterpreprocess_commentmodules\login-security\class-captcha.php:208

filterwpcf7_validatemodules\login-security\class-captcha.php:215

filterwpcf7_validate_twebsec_captchamodules\login-security\class-captcha.php:216

filterwpcf7_validate_twebsec_captcha*modules\login-security\class-captcha.php:217

filterwpcf7_skip_mailmodules\login-security\class-captcha.php:230

filterwpcf7_form_elementsmodules\login-security\class-captcha.php:237

actionwpcf7_initmodules\login-security\class-captcha.php:266

filterwpcf7_form_tag_twebsec_captchamodules\login-security\class-captcha.php:274

actionwpcf7_admin_initmodules\login-security\class-captcha.php:279

filterwpforms_process_before_form_datamodules\login-security\class-captcha.php:285

actionwoocommerce_login_formmodules\login-security\class-captcha.php:291

actionwoocommerce_register_formmodules\login-security\class-captcha.php:293

filterlogin_errorsmodules\login-security\class-captcha.php:295

filterwoocommerce_registration_errorsmodules\login-security\class-captcha.php:302

actionwoocommerce_after_order_notesmodules\login-security\class-captcha.php:308

actionwoocommerce_checkout_processmodules\login-security\class-captcha.php:309

actionwpforms_display_field_aftermodules\login-security\class-captcha.php:310

filtermanage_users_columnsmodules\login-security\class-login-security.php:37

actionmanage_users_custom_columnmodules\login-security\class-login-security.php:38

filtermanage_users_sortable_columnsmodules\login-security\class-login-security.php:39

actionlogin_initmodules\login-security\class-login-security.php:41

actiontemplate_redirectmodules\login-security\class-login-security.php:42

actionwoocommerce_login_formmodules\login-security\class-login-security.php:43

filterwp_authenticate_usermodules\login-security\class-login-security.php:45

filterauthenticatemodules\login-security\class-login-security.php:46

actionlogin_enqueue_scriptsmodules\login-security\class-login-security.php:47

filterauthenticatemodules\login-security\class-login-security.php:48

actionwp_loginmodules\login-security\class-login-security.php:57

filterwoocommerce_process_login_errorsmodules\login-security\class-login-security.php:69

actionwoocommerce_before_customer_login_formmodules\login-security\class-login-security.php:70

actionadmin_initmodules\login-security\class-login-security.php:73

actionadmin_initmodules\login-security\class-login-security.php:74

actionadmin_initmodules\login-security\class-login-security.php:75

actioninitmodules\login-security\class-login-security.php:80

actioninitmodules\login-security\class-login-security.php:82

actionwp_loginmodules\login-security\class-login-security.php:83

filterauthenticatemodules\login-security\class-login-security.php:88

filterrest_endpointsmodules\login-security\class-login-security.php:741

filteroembed_response_datamodules\login-security\class-login-security.php:751

actionadmin_enqueue_scriptsmodules\login-security\class-login-security.php:814

actiontwebsec_cleanup_logs_dailymodules\login-security\class-login-security.php:904

filterregistration_errorsmodules\login-security\class-login-security.php:952

filterwoocommerce_registration_errorsmodules\login-security\class-login-security.php:964

filterwoocommerce_checkout_registration_errorsmodules\login-security\class-login-security.php:971

actionlogin_footermodules\login-security\class-login-security.php:1072

actionwoocommerce_login_formmodules\login-security\class-login-security.php:1077

actioninitmodules\login-security\class-pp-login-hider.php:18

actiontemplate_redirectmodules\login-security\class-pp-login-hider.php:19

filterlogin_urlmodules\login-security\class-pp-login-hider.php:20

filterlogout_urlmodules\login-security\class-pp-login-hider.php:21

filterlostpassword_urlmodules\login-security\class-pp-login-hider.php:22

filterregister_urlmodules\login-security\class-pp-login-hider.php:23

filterxmlrpc_methodsmodules\login-security\class-pp-login-hider.php:24

actioninitmodules\login-security\class-pp-login-hider.php:25

actionlogin_initmodules\login-security\class-pp-login-hider.php:26

actionadmin_initmodules\malware-scanner\class-malware-scanner.php:18

actiontwebsec_run_malware_scanmodules\malware-scanner\class-malware-scanner.php:20

actiontwebsec_scan_core_filesmodules\malware-scanner\class-malware-scanner.php:22

actionwp_login_failedmodules\monitoring\class-monitoring.php:26

actionwp_loginmodules\monitoring\class-monitoring.php:27

actionuser_registermodules\monitoring\class-monitoring.php:29

actionprofile_updatemodules\monitoring\class-monitoring.php:30

actiondelete_usermodules\monitoring\class-monitoring.php:31

actionpassword_resetmodules\monitoring\class-monitoring.php:32

actionactivated_pluginmodules\monitoring\class-monitoring.php:34

actiondeactivated_pluginmodules\monitoring\class-monitoring.php:35

actionupgrader_process_completemodules\monitoring\class-monitoring.php:36

actionswitch_thememodules\monitoring\class-monitoring.php:37

actionupdate_option_active_pluginsmodules\monitoring\class-monitoring.php:38

actionwp_dashboard_setupmodules\monitoring\class-monitoring.php:40

actiontwebsec_daily_security_summarymodules\monitoring\class-monitoring.php:46

actionedit_user_profile_updatemodules\monitoring\class-monitoring.php:48

actionpersonal_options_updatemodules\monitoring\class-monitoring.php:49

actionadmin_initmodules\monitoring\class-monitoring.php:50

actionrest_api_initmodules\monitoring\class-monitoring.php:53

filtertwebsec_2fa_enabledmodules\monitoring\class-monitoring.php:63

actionadmin_initmodules\redirects\class-redirects.php:16

actionadmin_initmodules\redirects\class-redirects.php:17

actiontemplate_redirectmodules\redirects\class-redirects.php:18

actionadmin_noticestotalwebsecurity.php:27

actionadmin_noticestotalwebsecurity.php:31

actionadmin_enqueue_scriptstrunk\bootstrap\class-plugin.php:117

actionadmin_menutrunk\includes\helpers\class-menu-manager.php:14

actionadmin_enqueue_scriptstrunk\modules\admin-ui\class-admin-ui.php:17

actionlogin_enqueue_scriptstrunk\modules\admin-ui\class-admin-ui.php:18

actionwp_enqueue_scriptstrunk\modules\admin-ui\class-admin-ui.php:19

actionadmin_noticestrunk\modules\admin-ui\class-admin-ui.php:20

actionadmin_inittrunk\modules\admin-ui\class-admin-ui.php:24

actiontemplate_redirecttrunk\modules\admin-ui\class-admin-ui.php:57

actionwp_enqueue_scriptstrunk\modules\admin-ui\class-admin-ui.php:70

actionadmin_inittrunk\modules\admin-ui\class-settings-page.php:20

actionadmin_inittrunk\modules\audit-logs\class-audit-logger.php:67

actionrest_api_inittrunk\modules\audit-logs\class-audit-logger.php:69

actiontwebsec_daily_crontrunk\modules\audit-logs\class-audit-logger.php:71

actionadmin_inittrunk\modules\audit-logs\class-login-logs.php:25

actionadmin_inittrunk\modules\file-db-security\class-file-db-security.php:159

actionadmin_inittrunk\modules\file-db-security\class-file-db-security.php:160

actioninittrunk\modules\file-db-security\class-file-db-security.php:162

actioninittrunk\modules\file-db-security\class-file-db-security.php:164

actiontwebsec_file_change_scantrunk\modules\file-db-security\class-file-db-security.php:174

actiontwebsec_run_malware_scantrunk\modules\file-db-security\class-file-db-security.php:176

filtercron_schedulestrunk\modules\file-db-security\class-file-db-security.php:179

actiontwebsec_db_backuptrunk\modules\file-db-security\class-file-db-security.php:181

filterxmlrpc_enabledtrunk\modules\file-db-security\class-file-db-security.php:1669

filterthe_generatortrunk\modules\file-db-security\class-file-db-security.php:1678

filterupload_mimestrunk\modules\file-db-security\class-file-db-security.php:1689

filterwp_handle_upload_prefiltertrunk\modules\file-db-security\class-file-db-security.php:1690

actiontemplate_redirecttrunk\modules\file-db-security\class-file-db-security.php:1811

actioninittrunk\modules\file-db-security\class-file-db-security.php:1957

actiontemplate_redirecttrunk\modules\firewall\class-access-control.php:21

actionpreprocess_commenttrunk\modules\firewall\class-access-control.php:22

actioninittrunk\modules\firewall\class-access-control.php:23

actionrest_api_inittrunk\modules\firewall\class-access-control.php:25

actioninittrunk\modules\firewall\class-access-control.php:26

actionadmin_inittrunk\modules\firewall\class-access-control.php:49

actioninittrunk\modules\firewall\class-access-control.php:51

actioninittrunk\modules\firewall\class-access-control.php:52

actioninittrunk\modules\firewall\class-access-control.php:53

actioninittrunk\modules\firewall\class-access-control.php:54

actioninittrunk\modules\firewall\class-access-control.php:55

actioninittrunk\modules\firewall\class-access-control.php:56

actionadmin_inittrunk\modules\firewall\class-access-control.php:57

actionwp_insert_commenttrunk\modules\firewall\class-access-control.php:58

actionwptrunk\modules\firewall\class-access-control.php:706

filterrest_authentication_errorstrunk\modules\firewall\class-access-control.php:1069

actioninittrunk\modules\hardening\class-hardening.php:12

actionadmin_inittrunk\modules\hardening\class-hardening.php:14

actionsend_headerstrunk\modules\hardening\class-hardening.php:16

actionadmin_post_twebsec_hardening_wizardtrunk\modules\hardening\class-hardening.php:18

actionwp_footertrunk\modules\login-security\class-captcha.php:72

actionlogin_formtrunk\modules\login-security\class-captcha.php:173

actionwoocommerce_login_formtrunk\modules\login-security\class-captcha.php:174

actionregister_formtrunk\modules\login-security\class-captcha.php:175

actionlostpassword_formtrunk\modules\login-security\class-captcha.php:176

actionresetpass_formtrunk\modules\login-security\class-captcha.php:177

filterwp_authenticate_usertrunk\modules\login-security\class-captcha.php:179

actionuser_registertrunk\modules\login-security\class-captcha.php:186

actionlostpassword_posttrunk\modules\login-security\class-captcha.php:193

actionvalidate_password_resettrunk\modules\login-security\class-captcha.php:199

actioncomment_form_after_fieldstrunk\modules\login-security\class-captcha.php:205

actioncomment_form_logged_in_aftertrunk\modules\login-security\class-captcha.php:206

filterpreprocess_commenttrunk\modules\login-security\class-captcha.php:208

filterwpcf7_validatetrunk\modules\login-security\class-captcha.php:215

filterwpcf7_validate_twebsec_captchatrunk\modules\login-security\class-captcha.php:216

filterwpcf7_validate_twebsec_captcha*trunk\modules\login-security\class-captcha.php:217

filterwpcf7_skip_mailtrunk\modules\login-security\class-captcha.php:230

filterwpcf7_form_elementstrunk\modules\login-security\class-captcha.php:237

actionwpcf7_inittrunk\modules\login-security\class-captcha.php:266

filterwpcf7_form_tag_twebsec_captchatrunk\modules\login-security\class-captcha.php:274

actionwpcf7_admin_inittrunk\modules\login-security\class-captcha.php:279

filterwpforms_process_before_form_datatrunk\modules\login-security\class-captcha.php:285

actionwoocommerce_login_formtrunk\modules\login-security\class-captcha.php:291

actionwoocommerce_register_formtrunk\modules\login-security\class-captcha.php:293

filterlogin_errorstrunk\modules\login-security\class-captcha.php:295

filterwoocommerce_registration_errorstrunk\modules\login-security\class-captcha.php:302

actionwoocommerce_after_order_notestrunk\modules\login-security\class-captcha.php:308

actionwoocommerce_checkout_processtrunk\modules\login-security\class-captcha.php:309

actionwpforms_display_field_aftertrunk\modules\login-security\class-captcha.php:310

filtermanage_users_columnstrunk\modules\login-security\class-login-security.php:37

actionmanage_users_custom_columntrunk\modules\login-security\class-login-security.php:38

filtermanage_users_sortable_columnstrunk\modules\login-security\class-login-security.php:39

actionlogin_inittrunk\modules\login-security\class-login-security.php:41

actiontemplate_redirecttrunk\modules\login-security\class-login-security.php:42

actionwoocommerce_login_formtrunk\modules\login-security\class-login-security.php:43

filterwp_authenticate_usertrunk\modules\login-security\class-login-security.php:45

filterauthenticatetrunk\modules\login-security\class-login-security.php:46

actionlogin_enqueue_scriptstrunk\modules\login-security\class-login-security.php:47

filterauthenticatetrunk\modules\login-security\class-login-security.php:48

actionwp_logintrunk\modules\login-security\class-login-security.php:57

filterwoocommerce_process_login_errorstrunk\modules\login-security\class-login-security.php:69

actionwoocommerce_before_customer_login_formtrunk\modules\login-security\class-login-security.php:70

actionadmin_inittrunk\modules\login-security\class-login-security.php:73

actionadmin_inittrunk\modules\login-security\class-login-security.php:74

actionadmin_inittrunk\modules\login-security\class-login-security.php:75

actioninittrunk\modules\login-security\class-login-security.php:80

actioninittrunk\modules\login-security\class-login-security.php:82

actionwp_logintrunk\modules\login-security\class-login-security.php:83

filterauthenticatetrunk\modules\login-security\class-login-security.php:88

filterrest_endpointstrunk\modules\login-security\class-login-security.php:741

filteroembed_response_datatrunk\modules\login-security\class-login-security.php:751

actionadmin_enqueue_scriptstrunk\modules\login-security\class-login-security.php:814

actiontwebsec_cleanup_logs_dailytrunk\modules\login-security\class-login-security.php:904

filterregistration_errorstrunk\modules\login-security\class-login-security.php:952

filterwoocommerce_registration_errorstrunk\modules\login-security\class-login-security.php:964

filterwoocommerce_checkout_registration_errorstrunk\modules\login-security\class-login-security.php:971

actionlogin_footertrunk\modules\login-security\class-login-security.php:1072

actionwoocommerce_login_formtrunk\modules\login-security\class-login-security.php:1077

actioninittrunk\modules\login-security\class-pp-login-hider.php:18

actiontemplate_redirecttrunk\modules\login-security\class-pp-login-hider.php:19

filterlogin_urltrunk\modules\login-security\class-pp-login-hider.php:20

filterlogout_urltrunk\modules\login-security\class-pp-login-hider.php:21

filterlostpassword_urltrunk\modules\login-security\class-pp-login-hider.php:22

filterregister_urltrunk\modules\login-security\class-pp-login-hider.php:23

filterxmlrpc_methodstrunk\modules\login-security\class-pp-login-hider.php:24

actioninittrunk\modules\login-security\class-pp-login-hider.php:25

actionlogin_inittrunk\modules\login-security\class-pp-login-hider.php:26

actionadmin_inittrunk\modules\malware-scanner\class-malware-scanner.php:18

actiontwebsec_run_malware_scantrunk\modules\malware-scanner\class-malware-scanner.php:20

actiontwebsec_scan_core_filestrunk\modules\malware-scanner\class-malware-scanner.php:22

actionwp_login_failedtrunk\modules\monitoring\class-monitoring.php:26

actionwp_logintrunk\modules\monitoring\class-monitoring.php:27

actionuser_registertrunk\modules\monitoring\class-monitoring.php:29

actionprofile_updatetrunk\modules\monitoring\class-monitoring.php:30

actiondelete_usertrunk\modules\monitoring\class-monitoring.php:31

actionpassword_resettrunk\modules\monitoring\class-monitoring.php:32

actionactivated_plugintrunk\modules\monitoring\class-monitoring.php:34

actiondeactivated_plugintrunk\modules\monitoring\class-monitoring.php:35

actionupgrader_process_completetrunk\modules\monitoring\class-monitoring.php:36

actionswitch_themetrunk\modules\monitoring\class-monitoring.php:37

actionupdate_option_active_pluginstrunk\modules\monitoring\class-monitoring.php:38

actionwp_dashboard_setuptrunk\modules\monitoring\class-monitoring.php:40

actiontwebsec_daily_security_summarytrunk\modules\monitoring\class-monitoring.php:46

actionedit_user_profile_updatetrunk\modules\monitoring\class-monitoring.php:48

actionpersonal_options_updatetrunk\modules\monitoring\class-monitoring.php:49

actionadmin_inittrunk\modules\monitoring\class-monitoring.php:50

actionrest_api_inittrunk\modules\monitoring\class-monitoring.php:53

filtertwebsec_2fa_enabledtrunk\modules\monitoring\class-monitoring.php:63

actionadmin_inittrunk\modules\redirects\class-redirects.php:16

actionadmin_inittrunk\modules\redirects\class-redirects.php:17

actiontemplate_redirecttrunk\modules\redirects\class-redirects.php:18

actionadmin_noticestrunk\totalwebsecurity.php:27

actionadmin_noticestrunk\totalwebsecurity.php:31

Scheduled Events 12

twebsec_file_change_scan

twebsec_run_malware_scan

twebsec_db_backup

twebsec_daily_blacklist_update

twebsec_cleanup_logs_daily

twebsec_daily_security_summary

twebsec_file_change_scan

twebsec_run_malware_scan

twebsec_db_backup

twebsec_daily_blacklist_update

twebsec_cleanup_logs_daily

twebsec_daily_security_summary

Maintenance & Trust

TotalWeb – Security, Firewall & Malware Scanner Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 8, 2025

PHP min version7.4

Downloads148

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

TotalWeb – Security, Firewall & Malware Scanner Alternatives

Anti-Malware Security and Brute-Force Firewall

gotmls

This Anti-Malware scanner searches for Malware, Viruses, and other security threats and vulnerabilities on your server and it helps you fix them.

100K 9 CVEs

MAT Firewall

mat-firewall

100

MAT Firewall is a powerful WordPress security plugin that helps protect your website from malicious attacks, brute force attempts, and unauthorized ac …

10 No CVEs

Dotsquares Custom Login URL & Security Suite

custom-login-url-login-designer

100

Change your WordPress login URL, design the login page, and enhance your site's security with built-in protection tools.

0 No CVEs

Liveupx Security

liveupx-security

100

Comprehensive WordPress security plugin with login protection, firewall, brute force prevention, IP blocking, and activity logging.

0 No CVEs

VigiGuard Security

vigiguard-security

100

Simple one-click WordPress security. Protect your site in 30 seconds.

0 No CVEs

Developer Profile

TotalWeb – Security, Firewall & Malware Scanner Developer Profile

Pranshtech Solutions Private Limited

4 plugins · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect TotalWeb – Security, Firewall & Malware Scanner

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/totalweb-security-firewall-malware-scanner/assets/css/frontend.css/wp-content/plugins/totalweb-security-firewall-malware-scanner/assets/css/main.css/wp-content/plugins/totalweb-security-firewall-malware-scanner/assets/js/frontend.js/wp-content/plugins/totalweb-security-firewall-malware-scanner/assets/js/main.js

Script Paths

/wp-content/plugins/totalweb-security-firewall-malware-scanner/assets/js/main.js/wp-content/plugins/totalweb-security-firewall-malware-scanner/assets/js/frontend.js

Version Parameters

totalweb-security-firewall-malware-scanner/assets/css/frontend.css?ver=totalweb-security-firewall-malware-scanner/assets/css/main.css?ver=totalweb-security-firewall-malware-scanner/assets/js/frontend.js?ver=totalweb-security-firewall-malware-scanner/assets/js/main.js?ver=

HTML / DOM Fingerprints

CSS Classes

twebsec-notice

FAQ

TotalWeb – Security, Firewall & Malware Scanner Security & Risk Analysis

Is TotalWeb – Security, Firewall & Malware Scanner Safe to Use in 2026?

Generally Safe

Key Concerns

TotalWeb – Security, Firewall & Malware Scanner Security Vulnerabilities

TotalWeb – Security, Firewall & Malware Scanner Code Analysis

SQL Query Safety

Output Escaping

Data Flow Analysis

TotalWeb – Security, Firewall & Malware Scanner Attack Surface

AJAX Handlers 34

REST API Routes 4

Scheduled Events 12

TotalWeb – Security, Firewall & Malware Scanner Maintenance & Trust

Maintenance Signals

Community Trust

TotalWeb – Security, Firewall & Malware Scanner Alternatives

Anti-Malware Security and Brute-Force Firewall

MAT Firewall

Dotsquares Custom Login URL & Security Suite

Liveupx Security

VigiGuard Security

TotalWeb – Security, Firewall & Malware Scanner Developer Profile

How We Detect TotalWeb – Security, Firewall & Malware Scanner

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about TotalWeb – Security, Firewall & Malware Scanner