Back to Home
sjinks icon

wpscan-mcp-server

Verified Safe

by sjinks

View Source

Overview

Provides an MCP interface for querying WordPress vulnerability data via the WPScan API.

Installation

Run Command
node dist/index.js

Environment Variables

  • WPSCAN_API_TOKEN

Security Notes

The server correctly retrieves the WPScan API token from environment variables, preventing hardcoded secrets. It acts as a wrapper for the legitimate WPScan API. No 'eval', obfuscation, or unusual network activities beyond the documented API interaction were found. The primary security consideration is trusting the WPScan API itself and ensuring the API token is securely managed by the user.

Similar Servers

mcp-watch

111

A comprehensive security scanner for Model Context Protocol (MCP) servers, detecting various vulnerabilities in their implementations.

Other
9
$High

mcp-server

59

This plugin implements a Model Context Protocol (MCP) server for WordPress, exposing WordPress's data and functionality through its REST API to AI clients.

Other
7
$Low

intruder-mcp

21

Enables MCP clients to manage and query vulnerability scanning and security posture information from Intruder.io.

Other
9
$Medium

mcp-security-scanner

18

A Python-based penetration testing tool designed to scan and identify vulnerabilities in Model Context Protocol (MCP) servers.

8
$Medium

Stats

Interest Score0
Security Score9
Cost ClassLow
Avg Tokens500
Stars0
Forks0
Last Update2026-01-19

Tags

WordPressSecurityVulnerabilityAPIMCP