Kualo / docs
On this page

An introduction to Patchman

Patchman scans your hosting account for outdated applications, vulnerabilities, and malware, then patches issues automatically to keep your site secure.

2 min read Updated 4 Jun 2026

Patchman is a security scanning service included with your Kualo hosting account. It scans your web applications for outdated software, known vulnerabilities, and malware scripts, and can fix issues automatically without breaking your site.

Supported applications

Patchman can apply patches and fixes to the following applications:

  • WordPress (3.x and later)
  • Joomla (1.5.x and later)
  • Drupal (5.x and later)
  • osCommerce (2.2)
  • Magento (1.9.2 and later)
  • WooCommerce (2.1.0 and later)
  • PrestaShop (1.6.0.1 and later)

Patchman can also detect and alert you to outdated versions of a much larger range of applications.

What Patchman does for you

Outdated application checks

Keeping your applications up to date is one of the most important things you can do for your site's security. Updates deliver not just new features but also patches for known vulnerabilities. If you have several applications installed across your account, it is easy to lose track of which ones need attention. Patchman gives you an at-a-glance view of any outdated installations it finds.

Vulnerability patching

New vulnerabilities are discovered regularly in popular applications such as WordPress, Joomla, and Drupal. When that happens, the application developer works to release a fix as quickly as possible. Updating your application is always the best course of action. If you cannot update straight away, Patchman will automatically apply a patch to the vulnerable files after a short period, helping to keep the wider hosting environment secure.

Malware scanning and removal

Malware is often injected into your web space through vulnerable PHP applications. These malicious files can linger even after you update the application itself, causing problems ranging from unwanted spam sent from your domain to your site being used in attacks against other servers. Patchman scans your account for these scripts and automatically quarantines them, so you can focus on running your site rather than cleaning up after an infection.

Security notifications

Patchman sends you notifications when it detects security incidents or outdated applications, along with background information explaining the vulnerabilities involved. Staying informed is an important part of keeping your site secure.

Rolling back patches

Patchman is designed to fix issues without causing problems elsewhere on your site. If a patch does produce an undesired effect, you can roll it back quickly to restore your site to its previous state.

Patchman works alongside Imunify360, which provides real-time malware detection and proactive defence at the server level. Together they give your account multiple layers of protection.

Was this helpful?
Your feedback helps us find gaps in the docs.
Related articles
Patchman
Accessing Patchman via cPanel
Patchman scans your hosting account for vulnerabilities. Here is how to open its dashboard...
Patchman
Getting started with self-hosted Patchman: kill malware and fix vulnerable websites
Complete your Patchman policy setup to start detecting and remediating malware and vulnera...
Patchman
Understanding account vulnerabilities
Find out why outdated software leaves your website open to attack and what Kualo does to h...
Patchman
Reverting Patchman patches
If a Patchman patch causes a problem with your site, you can undo it from the Patchman das...
Still need a hand?
Real people, around the clock - start a chat or open a ticket and we'll help you put it right.
Contact us Start a chat