Managed Security Service / Vulnerability Management

The biggest WordPress risk
are the versions you're running.

v-scan
patched
core 6.6.2
yoast 23.4
wc 9.3.1
acf 6.3.6
elem 3.24
The Frontline / Version Control

Every WordPress site is a moving target — core, themes, plugins, and libraries push updates constantly. Miss one, and you become a CVE statistic. OwlEye runs disciplined version control across every component, every day.

N-1 Maximum drift on major versions across the entire stack.
N-3 Maximum drift on minor versions — enforced, audited, reported.
10d Contractual remediation SLA from CVE disclosure to production patch.
Component Inventory
Six asset classes · zero exceptions
01
WordPress Core
Major + Minor + Security
Privilege escalation, RCE
WordPress.org · NVD
02
Themes
Vendor releases + custom forks
Stored XSS, file inclusion
Patchstack · Vendor feeds
03
Plugins
Weekly — sometimes daily
96.6% of all WP CVEs
WPScan · Patchstack
04
PHP Libraries
Composer & vendor bundles
Supply-chain injection
NVD · GitHub Advisory
05
JS Libraries
Bundled in themes/plugins
Prototype pollution, XSS
Snyk · npm Audit
06
Server & Stack
PHP, NGINX, MySQL, OS
Remote code execution
Vendor CVE · CISA KEV
96.6%
Patchstack 2024
70%
Industry surveys
10d
OwlEye SLA
The Six Asset Classes

Every layer. Inventoried, baselined, patched.

/ 01
N-1 major / N-1 minor

WordPress Core

/ 02
N-1 major / N-3 minor

Themes (vendor & custom)

/ 03
N-1 major / N-3 minor

Plugins

/ 04
CVE-driven, hourly polling

PHP Libraries (Composer + vendored)

/ 05
Tracked, whitelisted, version-pinned

JavaScript Libraries

/ 06
72h vendor advisory SLA

Server, Runtime & OS

The Patching Protocol

Six steps. Repeated for every CVE. Forever.

STEP 01

Inventory

STEP 02

Baseline & Align

STEP 03

Continuous CVE Watch

STEP 04

Regression Test in Staging

STEP 05

Promote with Rollback

STEP 06

Report & Attest

Vulnerability Management Program

How we keep the platform — and your estate — hardened.

Patch management

Security testing

Penetration testing

Vulnerability notifications

Code and plugin scans

Logging and auditing

Anti-spam

Controlled changes

Coordinated core WordPress updates

Want a free inventory of your WordPress estate?

We’ll produce a confidential bill-of-materials of every core, theme, plugin, and library you’re running — with each component scored against current CVE data.