This plugin determines whether any of your plugins or themes have security vulnerabilities. It does this by looking up details in the WPScan Vulnerability Database. It will run a scan once a day, and e-mail the administrator if any vulnerable plugins or themes are found. You can also register a webhook for notifications. The webhook will trigger daily, even if no vulnerabilities found. The webhook is a post request, with JSON payload containing the vulnerabilities. You can enable the webhook under Settings\General tab – see the Plugin Security Scanner settings. It also adds a new menu option to the admin tools menu called “Plugin Security Scanner”. Clicking this runs a scan. If the scan finds any problems, it shows you a list of plugins or themes that have vulnerabilities, along with a description of the issue. If you are using the plugin on a commercial website, you may want to consider the premium support option for your peace of mind. Icons made by Alessio Atzeni from www.flaticon.com is licensed by CC BY 3.0