Back to skill

Security audit

WordPress

Security checks across malware telemetry and agentic risk

Overview

This WordPress skill is a disclosed OOMOL connector for reading and managing WordPress content, with explicit confirmation guidance for changes and deletes.

Install only if you intend to let OOMOL operate your connected WordPress account. Review generated payloads before approving create or update actions, and require exact target IDs before approving deletes. Treat the oo CLI installer and OOMOL account connection as third-party dependencies you must trust.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
85% confidence
Finding
The instruction to use this skill for "ANY WordPress request" is overly broad and can inappropriately steer an agent to invoke a powerful connector without sufficient task-specific gating. In context, this skill exposes read, write, and destructive actions, so broad routing language increases the chance of unnecessary tool use and accidental state-changing operations if higher-level safeguards are weak or bypassed.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.