Is Your WooCommerce Store Exposed?
Scan for security risks in 10 seconds β no signup, no cost.
Detect exposed login pages, xmlrpc.php, missing HTTPS, and security
headers.
π‘οΈ 100% Private | β
No data stored | β‘ Instant results
π What We Check (12 Security Tests):
Basic Security
- β HTTPS: Secure connection enforcement
- β Security Headers: CSP, HSTS, X-Frame-Options, and more
- β Technology Detection: WooCommerce & WordPress identification
Exposure Checks
- β Login Page: wp-login.php accessibility
- β XML-RPC: xmlrpc.php brute-force vector
- β User Enumeration: REST API user disclosure
Critical Exposures
- β Debug Log: wp-content/debug.log leakage
- β .git Directory: Source code exposure
- β Version Disclosure: readme.html & generator meta
Additional Checks
- β Directory Listing: wp-content/uploads exposure
- β Server Headers: Technology disclosure (Server, X-Powered-By)
- β robots.txt: SEO & crawler configuration
π Security Score & Grading
Your site receives a score from 0-100 based on the security checks above. Critical issues have the highest impact on your score.
A: 90-100
B: 80-89
C: 70-79
D: 60-69
F: Below 60