WordPress-Penetrationstests — threatover
Reads only public-facing artifacts (generator meta, /readme.html, /wp-json/, wp-emoji asset). Then asks rdintel.com for CVEs filed against that version.
Start an engagement.
Send the scope, stack, and timeline. You get a written proposal with a fixed quote.