Title: CloudAware Security Audit Author: CloudAware Published: 2025 年 6 月 30 日 Last modified: 2025 年 8 月 1 日 --- 搜尋外掛 ![](https://ps.w.org/cloudaware-security-audit/assets/icon-256x256.png?rev=3320034) # CloudAware Security Audit 由 [CloudAware](https://profiles.wordpress.org/cloudaware/) 開發 [下載](https://downloads.wordpress.org/plugin/cloudaware-security-audit.1.0.12.zip) * [詳細資料](https://tw.wordpress.org/plugins/cloudaware-security-audit/#description) * [使用者評論](https://tw.wordpress.org/plugins/cloudaware-security-audit/#reviews) * [安裝方式](https://tw.wordpress.org/plugins/cloudaware-security-audit/#installation) * [開發資訊](https://tw.wordpress.org/plugins/cloudaware-security-audit/#developers) [技術支援](https://wordpress.org/support/plugin/cloudaware-security-audit/) ## 外掛說明 This plugin adds auditing functionality to WordPress. It does this by adding extra REST API endpoints. Using these endpoints it is possible to: – see the version of core – see whether there is an update available for core – see what plugins are installed – see whether these plugins have been actived – see whether these plugins have autoupdate enabled – see whether these plugins have updates – see a list of vulnerabilities for these plugins – see what themes are installed – check if 2FA is enabled – see MD5 hashes of all theme and plugin folders For installations where the RESTAPI is disabled, the plugin can also push this information to an endpoint. This will work for installations that are behind a geoblock or have no RESTAPI. To disable this, remove the cronjob. ### Dependancies For getting vulnerabilities of WordPress components this plugin can use the WPVulnerability plugin (https://wordpress.org/plugins/wpvulnerability/). If this plugin is installed, it will be used, otherwise this plugin will work without the information from WPVulnerabilty plugin. Without installing this dependancy no data is transferred to WPVulnerability. Please see https://www.wpvulnerability.com/privacy/ for more information. ### External services In order to determine the latest version of installed software components this plugin uses the following external services: _GitHub_ Terms of Service: https://docs.github. com/en/site-policy/github-terms/github-terms-of-service Privacy Statement: https:// docs.github.com/en/site-policy/privacy-policies/github-general-privacy-statement– Releases list from ImageMagick github repository (https://api.github.com/repos/ImageMagick/ ImageMagick/releases) – Releases list from curl github repository (https://api.github. com/repos/curl/curl/releases) _Slider Revolution_ Terms of Service: https://www. sliderrevolution.com/terms/ Privacy Statement: https://www.sliderrevolution.com/ terms/privacy/ – Changelog documentation from Slider Revolution website (https:// www.sliderrevolution.com/documentation/changelog/) Apart from the usual headers (ip-address, UserAgent) used in a GET request no other information is send to these services. Specifically no version information is transmitted to external services. If you fill out an external url in the callback URL field in the settings, a WordPress cronjob will send a POST request with the audit data to this URL daily. ## 安裝方式 Install the plugin via the WordPress “Plugins” menu in WordPress and then activate using the blue “Activate” button. You can add a new user with restrictive role to your WordPress installation from within the plugin settings page by clicking on a button. ## 常見問題集 ### Is it safe? We use as little rights as possible to get the data from WordPress. The API endpoint does not include any POST, PUT or DELETE methods, so it is read-only. If you do see a problem with this plugin, please contact us: https://cloudaware.eu/.well-known/ security.txt ## 使用者評論 ![](https://secure.gravatar.com/avatar/bd07d37098d81ca750ef745a297829d1d0d5f77d7fc1e154eedb7f49609db7d4? s=60&d=retro&r=g) ### 󠀁[Fantastic super useful](https://wordpress.org/support/topic/fantastic-super-useful-2/)󠁿 [dennisspaan](https://profiles.wordpress.org/dennisspaan/) 2025 年 7 月 2 日 Does what it promises [ 閱讀全部 1 則使用者評論 ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/) ## 參與者及開發者 以下人員參與了開源軟體〈CloudAware Security Audit〉的開發相關工作。 參與者 * [ CloudAware ](https://profiles.wordpress.org/cloudaware/) [將〈CloudAware Security Audit〉外掛本地化為台灣繁體中文版](https://translate.wordpress.org/projects/wp-plugins/cloudaware-security-audit) ### 對開發相關資訊感興趣? 任何人均可[瀏覽程式碼](https://plugins.trac.wordpress.org/browser/cloudaware-security-audit/)、 查看 [SVN 存放庫](https://plugins.svn.wordpress.org/cloudaware-security-audit/), 或透過 [RSS](https://plugins.trac.wordpress.org/log/cloudaware-security-audit/?limit=100&mode=stop_on_copy&format=rss) 訂閱[開發記錄](https://plugins.trac.wordpress.org/log/cloudaware-security-audit/)。 ## 變更記錄 #### v1.0.12 * Format latest PHP version properly #### v1.0.11 * fix for php test (missing latest version) #### v1.0.10 * SQL server version check * disk space check * cron information * file uploads enabled in PHP config? * timezone check #### v1.0.9 * Code cleanup * Add hashing of theme and plugin folders * Add button to setting to add new user and role to system * Cleaner initialisation, deinitialisation #### v1.0.8 * Added check if 2FA is enabled through Wordfence plugin #### v1.0.7 * Added documentation, removed creation of user #### v1.0.6 * Added more configuration checks #### v1.0.5 * Added more config checks * Added new role for use in API (no more external plugin needed) #### v1.0.4 * Removed curl dependancy * Better error handling #### v1.0.0 * Initial release ## 中繼資料 * 版本 **1.0.12** * 最後更新 **10 個月前** * 啟用安裝數 **少於 10 次** * WordPress 版本需求 ** 6.0 或更新版本 ** * 已測試相容的 WordPress 版本 **6.8.5** * 語言 * [English (US)](https://wordpress.org/plugins/cloudaware-security-audit/) * 標籤: * [audit](https://tw.wordpress.org/plugins/tags/audit/)[security](https://tw.wordpress.org/plugins/tags/security/) * [進階檢視](https://tw.wordpress.org/plugins/cloudaware-security-audit/advanced/) ## 評分 5 星,滿分為 5 星 * [ 1 個 5 星使用者評論 ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=5) * [ 0 個 4 星使用者評論 ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=4) * [ 0 個 3 星使用者評論 ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=3) * [ 0 個 2 星使用者評論 ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=2) * [ 0 個 1 星使用者評論 ](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/?filter=1) [Your review](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/#new-post) [查看全部使用者評論](https://wordpress.org/support/plugin/cloudaware-security-audit/reviews/) ## 參與者 * [ CloudAware ](https://profiles.wordpress.org/cloudaware/) ## 技術支援 使用者可在技術支援論壇提出意見反應或使用問題。 [檢視技術支援論壇](https://wordpress.org/support/plugin/cloudaware-security-audit/)