Back

CMS Security

Content Management System (CMS) like Drupal, WordPress and Joomla are extremely popular and make working with content a breeze. What if keeping track of your CMS security was just as simple? With Detectify, you can check your site for the latest vulnerabilities and make sure your CMS is secure.

Detectify for CMS security

  • Over 700 security tests including CMS-specific vulnerabilities like WordPress Yoast SEO Data Exposure, Joomla! Unauthenticated SQL Injection, and Drupalgeddon
  • New security tests are continually added to the scanner thanks to our network of handpicked security researchers
  • Easy to set up - just verify ownership of your site and start scanning!
  • User-friendly scan reports with detailed remediation tips
  • Scale up or down anytime

Start your 14-day free trial

Why CMS security matters

  • New vulnerabilities and issues emerge all the time
  • Popular CMS solutions are an attractive target for hackers
  • CMS updates often reveal vulnerabilities in previous versions in the changelog, exposing websites that are not automatically updated
  • The more you add to your CMS installation, the higher the risk of your site becoming vulnerable

WordPress, Joomla, or Drupal - we’ve got you covered

With over 700 security tests, including modules that check for vulnerabilities in plugins and themes, Detectify helps you stay secure. Curious about what kind of vulnerabilities we check for? Here are just a few of the CMS-specific security tests included in the service:

  • CVE-2012-4000: FCKEditor XSS
  • CVE-2014-3704: Drupalgeddon
  • Ninja Forms Authenticated XSS
  • WordPress Yoast SEO Data Exposure
  • WordPress youtube-embed-plus CSRF
  • Joomla! extra-search SQL injection
  • CVE-2015-7297: Joomla! Unauthenticated SQL Injection
  • CVE-2015-8562: Joomla! Unauthenticated RCE
Coming up with great jokes