Plugin0 - Build Features & Discover WordPress Plugins with AIBeta
Home Plugins cloudaware security audit
CloudAware Security Audit logo

CloudAware Security Audit

by CloudAware on WordPress.org

This plugin adds auditing functionality to Wordpress.

(1)

This plugin adds auditing functionality to WordPress. It does this by adding extra
REST API endpoints. Using these endpoints it is possible to:
– see the version of core
– see whether there is an update available for core
– see what plugins are installed
– see whether these plugins have been actived
– see whether these plugins have autoupdate enabled
– see whether these plugins have updates
– see a list of vulnerabilities for these plugins
– see what themes are installed
– check if 2FA is enabled
– see MD5 hashes of all theme and plugin folders

For installations where the RESTAPI is disabled, the plugin can also push this information to an endpoint.
This will work for installations that are behind a geoblock or have no RESTAPI. To disable this, remove the
cronjob.

Dependancies

For getting vulnerabilities of WordPress components this plugin can use the WPVulnerability plugin
(https://wordpress.org/plugins/wpvulnerability/). If this plugin is installed, it will be used, otherwise this plugin
will work without the information from WPVulnerabilty plugin.
Without installing this dependancy no data is transferred to WPVulnerability. Please see https://www.wpvulnerability.com/privacy/
for more information.

External services

In order to determine the latest version of installed software components this plugin uses the following
external services:
GitHub
Terms of Service: https://docs.github.com/en/site-policy/github-terms/github-terms-of-service
Privacy Statement: https://docs.github.com/en/site-policy/privacy-policies/github-general-privacy-statement
– Releases list from ImageMagick github repository (https://api.github.com/repos/ImageMagick/ImageMagick/releases)
– Releases list from curl github repository (https://api.github.com/repos/curl/curl/releases)
Slider Revolution
Terms of Service: https://www.sliderrevolution.com/terms/
Privacy Statement: https://www.sliderrevolution.com/terms/privacy/
– Changelog documentation from Slider Revolution website (https://www.sliderrevolution.com/documentation/changelog/)

Apart from the usual headers (ip-address, UserAgent) used in a GET request no other information is send to these services.
Specifically no version information is transmitted to external services.

If you fill out an external url in the callback URL field in the settings, a WordPress cronjob will send a POST request
with the audit data to this URL daily.

Active installations0+
Weekly downloads
59+15.69%
Version1.0.12
Last updated8/1/2025
WordPress version6.0
Tested up to6.8.2
Tags
auditsecurity

Related Plugins

Fail2WP logo

Fail2WP

Security plugin for WordPress with support for fail2ban. Tested with WordPress 5.5+ and PHP 7.4/8.1.x.

100+
Weborado Helper logo

Weborado Helper

Essential tools for WordPress site administrators to monitor versions, enhance security, and improve performance.

20+
Better Headers logo

Better Headers

Improve the security of your website by easily setting HTTP response headers to enable browser protection

100+