Please use the “Print” function at the bottom of the page to create a PDF.
Valid for WordPress contracts created after September 2022. (Learn more about your IONOS WordPress version)
In today's digital world, website security is essential, especially for content management systems such as WordPress, which are widely used. To ensure the highest level of security for our customers, IONOS is introducing a new feature in its WordPress security plugin, the "Vulnerability Scan".
What is the Vulnerability Scan?
The WordPress Vulnerability Scan is a function that is integrated into the WordPress plugin "IONOS Security". The vulnerability scan uses the extensive database ofWPScan - the leading source of information on security vulnerabilities in WordPress - to check your WordPress installation for security risks. The scan includes plugins, themes and the WordPress core itself.
Availability and provision
The "IONOS Security" plugin is now installed automatically for new installations. If the plugin is not installed on your computer, you can simply install it through the plugin management.
Please note
The security scan will initially be offered for new installations from July 15, 2024. Customers who have already created a WordPress installation since September 2022 and are using the Security Plugin will only have the new feature made available at a later date via an update to the plugin.
The following features described in this article are not currently available and will be added shortly: checking themes/plugins during installation, email notification.
How does the scan work?
Every day, the plugin automatically performs a scan and checks for vulnerabilities. The results are divided into three categories:
- Green: No vulnerabilities found
- Yellow: Vulnerabilities with low to medium risk found
- Red: Vulnerability found with high risk
You receive notifications about vulnerabilities found directly in the WordPress administration and by email so that you can react quickly to potential threats.
Show scan results
To view the results of the scan, click on IONOS > Security in the left-hand menu of the WordPress administration and activate the Vulnerability Scan tab.
Recommended measures
If a vulnerability is discovered, the plugin makes recommendations such as
- Install update/patch: If an update is available for a plugin or theme, it should be installed as soon as possible.
- Deactivate plugin/theme: If no update is available, it is recommended to temporarily deactivate the plugin or theme until the provider makes a corresponding update available.
Please note
Please note that IONOS does not update or delete plugins or themes on behalf of the customer. It is your responsibility to take the recommended measures or to deactivate or uninstall the respective plugin in case of problems. If necessary, you can also contact the plugin developer or seek help through wordpress.org or the community.
Additional safety measures
The vulnerability scan is also used when installing new themes and plugins. Depending on the results, installations can either be blocked if there are serious problems or a warning is issued if only high-risk installations are at risk.