Site Information
WordPress Version: 6.2.9 ⚠️ VULNERABLE
Theme: themify-ultra (used by 12,880 domains)
Last Checked: 2026-07-01 19:27:10
HTTPS: ✅ Yes
Plugins (13)
| Plugin | Used By |
|---|---|
| addthis | 9,206 |
| amazon-polly | 1,004 |
| announcement-bar | 844 |
| document-emberdder | 1,602 |
| fake | 13,628 |
| jetpack | 456,453 |
| simple-tags | 8,416 |
| themify-event-post | 619 |
| themify-ptb | 1,888 |
| themify-shortcodes | 2,231 |
| themify-store-locator | 83 |
| woocommerce-payments | 110,969 |
| woocommerce-shopdock | 112 |
Security Headers
F
Grade F
5 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (6.2.9) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.