Register now or log in to join your professional community.
If it is a wordpress site, I would suggest WPScan and if joomla site Joomscan. It shows you pretty much all the vulnerabilities. Further you have the Nexus scanner to show you in depth details regarding the vulnerabilities. All these scanner can be easily installed and configured in our local machine and free ofcourse. After which you just have to input the website name and the scanner does the rest. All of these give you a detailed report after the scan and also recommendations to patch it.