One of the easiest ways to get hacked is by running vulnerable WordPress plugins. It could easily happen to you if you are not paying attention to security blogs or don’t update your plugins often. Plugin Vulnerabilities is one of many plugins you can rely on to find out about plugins that are vulnerable. It checks the plugins you have installed against a list of verified security vulnerabilities and alerts you when you need to fix something.
Plugin Vulnerabilities can be set up to send you a notification when you have a vulnerable installed on your site. You can also use this information to find out what could have caused your website to be hacked. The script currently covers various CSRF, SQL, and other security vulnerabilities. This is a free plugin.