Site Information
WordPress Version: 7.0 ✓
Theme: astra (used by 433,998 domains)
Last Checked: 2026-06-06 21:14:19
HTTPS: ✅ Yes
Plugins (14)
| Plugin | Used By |
|---|---|
| all-in-one-seo-pack | 94,971 |
| astra-sites | 122,596 |
| bluehost-wordpress-plugin | 193,177 |
| custom-facebook-feed | 43,367 |
| elementor | 1,823,795 |
| elementor-pro | 1,076,170 |
| events-widgets-for-elementor-and-the-events-calendar | 983 |
| header-footer-elementor | 215,667 |
| indeed-membership-pro | 2,043 |
| instagram-feed | 234,458 |
| the-events-calendar | 129,449 |
| the-post-grid | 15,305 |
| ultimate-addons-for-gutenberg | 51,475 |
| ultimate-member | 29,175 |
Security Headers
B
Grade B
1 missing header
Missing Headers:
- Content-Security-Policy (CSP) — Prevents XSS attacks ?
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.