MainWP Vulnerability Checker 4.1 Beta - MainWP NVD API Addition

REQUIREMENTS

MainWP Vulnerability Checker 4.1 Beta requires MainWP Dashboard and MainWP Child 4.1.7 or newer!

DOWNLOADS

MainWP NVD API

MainWP NVD API uses the NVD Nist API to find potential vulnerabilities on your child sites. It is an alternative for users that don’t have an active subscription with the WPVulnDB.

The NVD is the U.S. government repository of standards-based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables the automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, misconfigurations, product names, and impact metrics.

INSTALLATION

To install the beta version of the extension, simply deactivate and delete the version that you currently have installed and install the beta version.

ENABLE MAINWP NVD API

  1. Go to the MainWP > Extensions > Vulnerability Checker > Settings page
  2. Find the Select Service option and select MainWP NVD API
  3. Save Settings

IMPORTANT NOTE

NVD Nist API Database can not be searched by plugin/theme slug (which would be unique for each item) and assure better accuracy, it can be searched by keyword only. This means that the API can return some false-positive results. For some vulnerabilities, the NVD Nist API lacks the “Fixed in version” info which can lead to extension showing vulnerabilities that already have been resolved. In order to remove false positives and get accurate results, you can use the “Ignore” function for the detected vulnerabilities if you recognize them as false-positive.

RELEASED: 7-14-2021

1 Like