WordPress securityArgus secures WordPress two ways at once — an always-on external scanner that needs nothing but your URL, and the Argus Sentinel agent: a Wordfence-class firewall with login defence, integrity scanning and AI-driven remote response. Self-hosted or WordPress.com. Many eyes. One mesh.
Protect unlimited WordPress sites from $19/mo. Built by Mind Hack, Inc.
In 2026 the pattern is unmistakable: a single plugin flaw lands, automated exploitation begins within hours, and hundreds of thousands of sites are in scope by the end of the week.
In May, more than a million WordPress sites were caught in a single plugin flaw — the kind of blast radius that used to be a decade event and is now a weekly one. The story repeats with frightening regularity, and the names of the plugins change but the shape of the campaign does not.
On 4 June 2026, Infosecurity Magazine reported active exploitation of CVE-2026-3300in Everest Forms Pro — a CVSS 9.8 remote code execution bug in the plugin's Calculation add-on that passes attacker input straight into a PHP eval(). The numbers tell the story: Wordfence telemetry shows more than 29,300 exploit attempts blocked, with 26,300 of them traced to a single source IP. The leading payload created a hidden administrator account named “diksimarina” — the kind of stealth persistence move that an alert backlog and a once-a-day scan will both miss.
On 1 June 2026, Security Affairs broke CVE-2026-8732in WP Maps Pro — a flaw in the plugin's “temporary access” AJAX handler that let any unauthenticated visitor spawn a new administrator with no password, by abusing a nonce the plugin embedded publicly. Two thousand attacks landed in 24 hours against around 15,000 installs.
A day later, BleepingComputer reported active exploitation of CVE-2026-8206 in Kirki, a customiser framework active on 500,000+ sites — with roughly 150,000 of them on vulnerable 6.0.0–6.0.6 builds. The bug accepted an attacker-supplied email on the password-reset path for any username; the bounty paid to the researcher was over six thousand dollars and a fraction of what an exploited estate would have cost.
The next shift is bigger. On 22 May 2026, Help Net Security reported a research team that built an AI pipeline in three days and surfaced 300+ critical WordPress plugin zero-days in 72 hours — at an average cost of twenty dollars per flaw. As one of the researchers put it on the record, “any motivated attacker with a credit card can execute this.” The number of defenders has not changed; the number of fresh zero-days that need triaging has gone up by an order of magnitude.
And the platform itself is moving. Coverage from Search Engine Journal flagged that WordPress 7.0's built-in AI integration introduces a new asset every operator now stores in the database — provider API keys — and that an autofill bug already exposes Anthropic keys in browser dropdowns. Patchstack's Oliver Sild summed up the year ahead bluntly: “WordPress 7.0 combined with plugin vulnerabilities = free AI tokens. There will be an absolute rush by hackers to steal API keys.”
Find a plugin used widely enough to be worth the effort, find a code path that accepts unauthenticated input, abuse it to create an administrator account or run arbitrary PHP, and move within hours of disclosure. Everest Forms Pro, Kirki and WP Maps Pro are three months of evidence that the loop now closes faster than any update cadence designed around a human pressing “upgrade”. The defensive answer cannot be a faster human; it has to be a verdict that lands on every site at once.
That is also where the size of the WordPress ecosystem stops being an asset and becomes a liability. Roughly 43% of the public web runs WordPress, with tens of thousands of active plugins between them — far more code than the entire proprietary CMS market combined. Each plugin is a separately maintained codebase with its own update cadence, its own author motivation and its own quality bar. An attacker who finds a flaw in any of them inherits an addressable market of hundreds of thousands of sites; a defender who responds one plugin at a time is always one disclosure behind.
The external scanner sees your site the way an attacker does — no access required. The Sentinel agent lives inside WordPress and actively defends it. Full coverage is both, working together.
Black-box HTTP fingerprinting maps your core, plugin and theme versions to known CVEs. No credentials, no agent, no install — just add the site URL as a target and Argus sweeps it automatically.
A lightweight plugin that defends every request in real time and gives Argus a signed channel to act on the site. This is where active protection and remote response live.
Every capability below is live in Argus now — each one mapped to a real attacker move from the 2026 record, not a roadmap promise.
| Attacker move | Argus capability | What Argus does about it |
|---|---|---|
| Creating a secret admin account (WP Maps Pro, Kirki) | AI verdict, with response held at the autonomy gate | Scores every new-admin event for anomaly, logs the session out automatically, and asks an operator before quarantining |
| Running malicious code through a plugin (Everest Forms Pro) | Request firewall and signed remote response | Detects injection, scripting and code-execution attempts before WordPress runs them, then can switch off the compromised plugin remotely |
| Brute-forcing the login page | Login defence with breached-password checks | Locks out repeated failures, enforces strong passwords, and rejects passwords found in known breaches |
| Tampering with core files or planting a backdoor | Daily integrity scan against WordPress.org originals | Compares your core files to the official WordPress release and flags executable code where it should never appear |
| Hammering every site from one source | IP and country blocking with automatic response | Blocks the attacking address on its own, rate-limits the rest, and asks before applying a country-wide rule |
| AI-generated zero-days, produced at scale | Tiered AI verdict across one mesh, not one plugin per site | Reaches a verdict with a fast model first and escalates only when unsure, then pushes one protective rule to every paired site |
| Outdated core and abandoned plugins | External scanner CVE mapping | Fingerprints versions without credentials and matches them against NVD, the CISA KEV catalogue and the Patchstack database |
What's possible depends on whether the host lets a plugin run and lets you edit wp-config.php. Here's the honest matrix.
| Host / plan | External scanner | Sentinel agent | Result |
|---|---|---|---|
| Self-hosted (WordPress.org)Any VPS, cPanel or managed host with SFTP/SSH | Full | Full | Full coverage |
| WordPress.com Business / CommerceThese tiers unlock plugin install + SFTP/SSH | Full | Full | Full coverage — treat as self-hosted |
| WordPress.com Free / Personal / PremiumThe platform blocks every plugin, for any vendor | Monitoring | Blocked by platform | External monitoring today — full cover one upgrade away |
Two roads. On self-hosted WordPress and on WordPress.com Business or Commerce, Argus runs in full — external scanning plus the Sentinel agent, exactly as it does anywhere else.
On WordPress.com Free, Personal and Premium, the platform itself blocks every security plugin and hides version details — so no product, Argus or otherwise, can install an agent or run a firewall there. That is Automattic's boundary, not ours. What Argus gives you on those tiers today is external monitoring: uptime, exposure and posture from the outside. Full protection is one step away — upgrade to Business or Commerce, or move to any host that allows plugins, and Argus covers the site completely. An authenticated WordPress.com inventory connector is on our roadmap to deepen that outside view further.
Everything you expect from a serious WordPress security plugin, run by a mesh that triages, enriches and responds with AI.
Blocks SQLi, XSS, path traversal, RCE and malicious uploads at the edge of WordPress — with per-IP rate limiting, IP allow/deny lists and optional country blocking.
Brute-force lockout, strong-password enforcement and breached-password checks stop credential attacks before they land.
A daily scan compares core files against WordPress.org known-good hashes and flags executable PHP where it shouldn't be — catching backdoors and tampering.
Every event is cryptographically signed on the way into the mesh, so Argus can trust what your site reports — and you get a real audit trail.
Findings are scored, de-duplicated and explained in plain language, with a recommended fix — so you act on what matters instead of a wall of alerts. The same AI is the backbone of AI in security operations across the rest of the Argus mesh.
Over a signed command channel, Argus can deactivate a compromised plugin, force-logout every session, or block an IP — one-click from the dashboard or driven by a playbook. Disruptive actions go through the autonomy gate; reversible ones can run AUTO.
The shape of the product is the difference. Most WordPress security tools install one copy of themselves per site, with its own dashboard, its own ruleset and its own update path. That model breaks the moment you cross a handful of properties.
The Argus mesh keeps a single decision layer for every site you own. The Sentinel must-use plugin on each WordPress install is thin — request firewall, login defence, integrity scanner, signed channel — and the rest of the brain lives in the mesh. When the mesh issues a verdict (“this request signature is exploit traffic; block this IP at the edge of every site”) it propagates to every paired install at once. The same is true for advisories: an outdated plugin flagged on one site shows up on the operator's estate-wide queue with a recommended action, ranked against every other open finding.
Practically, that means three things you cannot get out of a plugin-per-site model. A virtual patch — a request-shape rule that blocks the exploit attempt while the plugin author works on a fix — lands on every site simultaneously instead of one site at a time as owners notice and update. The autonomy gate is consistent: an action approved on one site for a single attacker IP is, by default, the same decision the operator would make on the others, so the workflow does not have to be repeated 40 times. And the audit trail is centralised, signed and shared — a single record of what acted on which site, when, with whose approval.
For an agency or platform operator, that means the cost of adding a site is roughly the cost of running the URL through the external scanner and dropping a must-use plugin into the deploy image. There is no per-site licence to renew, no per-site dashboard to log into and nothing to keep current on a site-by-site basis. The work moves up to a single estate-level view, where the human time goes into judgment instead of repetition.
Argus first and fixed, seven established names beside it, eleven capabilities down the side. Every cell traces back to the vendor's own page — the vendors reviewed are named at the foot of the section.
| Capability | ArgusAI mesh | WordfencePlugin | SucuriCloud WAF | MalCarePlugin + cloud | JetpackBundle | SolidWPPlugin | AIOSPlugin | CloudflareNetwork WAF |
|---|---|---|---|---|---|---|---|---|
| Price (entry) | $0 / $9Yes. $0 / $9 | $0 / $149$0 / $149 | $229$229 | $0 / $99$0 / $99 | $0 / paid$0 / paid | $0 / bundled$0 / bundled | $0 / Premium$0 / Premium | $0 / $20$0 / $20 |
| Firewall | Hybrid + AIYes. Hybrid + AI | EndpointYes. Endpoint | CloudYes. Cloud | HybridYes. Hybrid | EndpointYes. Endpoint | EndpointYes. Endpoint | EndpointYes. Endpoint | CloudYes. Cloud |
| Malware scan | Core integrityYes. Core integrity | SignaturesPartial. Signatures | RemoteYes. Remote | Cloud AIYes. Cloud AI | SignaturesYes. Signatures | File scanYes. File scan | SignaturesYes. Signatures | n/aNo. n/a |
| Login defence | + breach checkYes. + breach check | Yes. | via WAFYes. via WAF | Yes. | Yes. | Yes. | Yes. | rate-limitPartial. rate-limit |
| Two-factor (2FA) | Yes. | Yes. | page-gatePartial. page-gate | Yes. | .com acctYes. .com acct | Yes. | Yes. | acct onlyPartial. acct only |
| Vuln database | NVD + KEV + PSYes. NVD + KEV + PS | own DBYes. own DB | internalPartial. internal | alertsPartial. alerts | WPScanYes. WPScan | PatchstackYes. Patchstack | No. | rulesetsPartial. rulesets |
| Cleanup service | AI auto-containPartial. AI auto-contain | Care tierYes. Care tier | unlimitedYes. unlimited | 1-clickYes. 1-click | restorePartial. restore | No. | No. | No. |
| Auto-response | autonomousYes. autonomous | rulesPartial. rules | rulesPartial. rules | rulesPartial. rules | rulesPartial. rules | rulesPartial. rules | rulesPartial. rules | WAF rulesPartial. WAF rules |
| AI triage | verdict routerYes. verdict router | human DBNo. human DB | heuristicNo. heuristic | AI scanYes. AI scan | No. | No. | No. | top tiersPartial. top tiers |
| Multi-site | nativeYes. native | add-onPartial. add-on | agencyPartial. agency | nativeYes. native | per-siteNo. per-site | add-onPartial. add-on | per-siteNo. per-site | multi-zoneYes. multi-zone |
✓full ~partial / conditional – not offered
Argus is built for the operator who runs more than one WordPress site and wants the same AI brain protecting all of them. Three things show up in the matrix that are genuinely different. The AI verdict layer reads each finding with a fast model first and escalates to a stronger one only when it is unsure, turning a noisy alert stream into a small ranked queue. The autonomous response splits actions into reversible and disruptive — a freshly created admin account is contained automatically, while anything that risks downtime waits for an operator's approval. And the mesh model means one verdict pushes a protective rule to every paired site at once — there is no per-site licence to upgrade and no plugin to keep current across 40 dashboards.
The AI verdict layer is the part the matrix understates because nobody else positions it as a primary feature. In practice it does two unglamorous jobs that matter most when the next Everest Forms lands. The first is signal-to-noise: the same alert stream that produces 29,000 firewall events in a single campaign gets clustered, ranked and tagged with a confidence score, so the operator sees one item on the queue rather than 29,000. The second is honest uncertainty: when the confidence is low, the verdict says so and the action stays at the autonomy gate. Argus does not pretend to be sure when it is not. That is a deliberate trade against the “auto-respond to everything” pattern, and it costs an extra click on the genuinely ambiguous cases — which is exactly where you want the click to live.
On the two outcomes the established names are best known for, Argus arrives by a different route — and that is the point. Sucurisells a human-staffed cleanup service with documented SLAs measured in hours. Argus inverts that timeline: the AI verdict layer plus the signed remote channel auto-contain a compromise in the minutes it takes a support ticket to be assigned to an analyst — and the daily integrity scan against WordPress.org checksums gives the mesh a known-good baseline to roll back to, mechanically. The SLA that actually matters is “how long was my site serving attacker code,” and on that clock the mesh starts ahead. The same is true of Wordfence's signature/threat-intel programme: a decade of curated signatures is real work, and Argus answers it with an AI verdict layer that reads the request shape directly, fed by NVD, KEV and Patchstack ingest — built for the world where attackers ship 300+ zero-days in 72 hours, not the one where signature releases set the pace.
For an extended head-to-head, the spoke article Wordfence vs Argus for builders: where each one wins walks through the same trade-offs with real-world examples — and how the two products can coexist on the same site during a transition.
Every cell was checked against the vendor's own pricing, product or documentation pages in June 2026 — including the fine print, so a capability that sits behind a higher tier or a separate product is marked as partial rather than a clean tick. Pricing reflects entry tiers at the time of writing, converted to USD where applicable; check each vendor's site for current numbers, currency and regional offers. We don't link to competitors — but the claims are theirs to confirm. Vendors reviewed:
Wordfence — products & pricing · Sucuri — website firewall & platform · MalCare — pricing & features · Jetpack — security features · Solid Security — Site Scan (Patchstack-powered) · All-In-One Security (AIOS) — features · Cloudflare — plans
Drawn from Hostinger's 22-step WordPress security guide and the Argus mesh in production — the controls that pay back the most attacker reach for the least operator effort.
Hostinger reports roughly a third of WordPress sites still run an outdated core. Every public plugin advisory becomes an exploitation campaign within hours, so a working update cadence is the single highest-value control. Argus surfaces outdated components from the external scanner alone, before anyone logs in.
Move the admin route off the default path where you can, lock out brute-force attempts at 5–10 failed tries, and reject the worst password lists outright. Sentinel's login defence covers lockout and strong-password enforcement with a breached-password check on every set.
Authenticator-app or hardware key only — SMS does not count any more. Force 2FA on every administrator and editor account; a single phished session is the difference between a contained incident and a site-wide compromise.
Set DISALLOW_FILE_EDIT to true in wp-config.php. The dashboard editor is the most convenient post-compromise foothold an attacker can hope for and your developers will not miss it.
Block PHP execution under /wp-content/uploads at the web-server level. The malicious-upload vector is one line of nginx or Apache config and removes a whole class of webshell.
HTTPS everywhere, HSTS, a sane Content-Security-Policy and X-Frame-Options. These are checks the external scanner runs automatically and reports back as posture findings.
Argus is prevention and containment, not recovery. Pair the mesh with an off-host backup of database and uploads, tested by restoring it at least quarterly. The day you need a restore point is the day you find out whether your backups work.
Anything not updated in 12 months should be on the watchlist; anything not updated in 18 should be replaced. The external scanner flags abandoned plugins against the WPScan and Patchstack databases.
These are the controls every WordPress operator should run regardless of which security vendor sits in front of them. The good news is that Argus checks for most of them automatically as part of vulnerability management and posture scoring — and where it can act, it does. Where it cannot (a missing 2FA on an admin account, for example), the dashboard says so in plain English.
An honest hardening list is only useful if someone runs through it. For a single site, that someone is the owner and a calendar reminder. For an estate of ten or forty or a hundred, the calendar reminder is where the work fails. The external scanner runs the eight checks above on every site you have added to Argus on its own cadence, surfaces the gaps in plain English, and tells the operator which ones the mesh can close on its own. Out-of-date plugin: tracked against NVD, Patchstack's database and the KEV catalogue, with a recommended upgrade or temporary virtual patch. Missing security headers: flagged on every sweep with the exact one-liner for your stack. Weak admin passwords: caught at set time by the breached-password check, not after the breach.
The mesh does not absolve the operator of responsibility — it simply makes the gap between “the list says you should” and “the site is now doing it” as small as possible. That is the difference between a checklist that lives in a wiki and a posture that is true today.
Add the site for instant external coverage, then enrol the agent for active defence. Typically a few minutes per site.
Add your site URL as a target. The external scanner fingerprints it on the next sweep — external coverage is on, no install needed.
Argus mints the site's identity and generates its HMAC secret, returning the exact wp-config block to paste. You never invent a secret.
Copy the Argus Sentinel must-use plugin into wp-content/mu-plugins/via SFTP, your host's file manager, or your deploy image.
Paste ARGUS_SITE_ID, ARGUS_HMAC_SECRET and ARGUS_INGEST_URL into wp-config.php. Optional hardening constants tune the firewall and lockouts.
Load any page to boot the plugin. The dashboard flips the site to Protection: Active on the first signed telemetry — and remote response is live.
Every plan protects unlimited sites with continuous scanning and AI triage. Defend adds the in-site firewall and login security; Respond adds autonomous auto-response; higher tiers add more AI, governance and SLAs — see Argus pricing for the full breakdown. You pay for intelligence, not per site.
The 2026 recap, the head-to-head with Wordfence, and the AI-discovery story that changes the economics of WordPress vulnerabilities.
Everest Forms Pro, Kirki, WP Maps Pro and the AI-zero-day pipeline — what every one of them tells you about how to defend a WordPress estate this year.
Honest head-to-head — where Wordfence still leads on heritage and human cleanup, where Argus pulls ahead on AI verdict and mesh response, and how to run both during a transition.
Claude Mythos surfaced thousands of vulnerabilities and wrote working exploits. The defensive answer is symmetrical: AI verdicts, mesh-scale response, and a human gate on anything irreversible.
For broader topic context, see the WordPress security hub and vulnerability management hub on the Argus topics index. The piece on prioritising CVEs when every vulnerability is marked critical is the framework the mesh uses to score WordPress findings against everything else in your estate.
The same mesh that protects WordPress sits in front of the rest of the estate — the code repositories, the cloud accounts, the CDNs and the staging hosts that attackers reach through when the front door is locked. A WordPress finding does not arrive in isolation; it arrives ranked against everything else open against the same owner, with the same AI-driven explanation and the same one-click path to action. That is the part of the product that does not appear in any WordPress-only comparison: the WordPress mesh is one shape of a single security mesh, and the decision layer is shared.
Add a site in seconds for external coverage, drop in the agent for full protection, and let AI watch the rest.
