WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for n*t*h*t*a*f*x.com

Site Information

WordPress Version: 6.4.8 ⚠️ VULNERABLE

Theme: himmelen (used by 123 domains)

Last Checked: 2026-06-07 17:50:10

HTTPS: ✅ Yes

Plugins (13)

Plugin Used By
contact-form-7 1,770,369
duracelltomi-google-tag-manager 93,532
fastgallery 298
gosign-gallery-box-block 277
instagram-feed 228,082
purethemes-shortcodes 377
recent-posts-widget-with-thumbnails 26,074
redux-framework 13,727
responsive-lightbox 34,553
silicon-counters 90
travellerpress 71
visual-portfolio 10,206
wp-post-series 149

Security Headers

F
Grade F

6 missing headers

Missing Headers:

  • Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
  • Content-Security-Policy (CSP) — Prevents XSS attacks ?
  • X-Content-Type-Options — Prevents MIME sniffing ?
  • X-Frame-Options — Prevents clickjacking ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

  • ⚠️ Vulnerable WordPress Version (6.4.8) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
  • 👤 User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin Count
elementor 1,800,450
contact-form-7 1,770,416
elementor-pro 1,049,481
woocommerce 816,578
revslider 617,763
jetpack 467,002
js_composer 432,362
wp-rocket 334,096
essential-addons-for-elementor-lite 293,692
gravityforms 267,060
complianz-gdpr 256,646
cookie-law-info 231,313
instagram-feed 228,088
google-site-kit 222,053
sitepress-multilingual-cms 221,190
google-analytics-for-wordpress 214,049
header-footer-elementor 210,208
elementskit-lite 206,911
bluehost-wordpress-plugin 190,775
gutenberg 162,337
gutenberg-core 159,507
cookie-notice 151,371
the-events-calendar 131,527
litespeed-cache 130,994
wpforms-lite 129,550
gtranslate 127,925
astra-sites 119,573
popup-maker 116,091
woocommerce-payments 112,960
tablepress 109,187
coblocks 99,539
honeypot 97,392
astra-addon 95,313
duracelltomi-google-tag-manager 93,533
wp-smushit 93,516
all-in-one-seo-pack 93,320
LayerSlider 91,657
bb-plugin 90,822
premium-addons-for-elementor 86,880
megamenu 86,508
akismet 86,074
cleantalk-spam-protect 83,880
mailchimp-for-wp 83,756
woocommerce-gateway-stripe 83,116
ml-slider 81,034
fusion-builder 79,664
borlabs-cookie 79,520
ewww-image-optimizer 79,050
wp-pagenavi 78,797
formidable 78,063

Top 50 Themes

Theme Count
hello-elementor 615,573
Divi 510,726
astra 423,626
flatsome 133,744
Avada 124,341
generatepress 119,948
pub 109,942
oceanwp 83,460
kadence 78,474
enfold 71,844
salient 66,714
twentytwentyfour 58,958
h4 56,410
twentyseventeen 56,190
bb-theme 55,281
cocoon-master 52,095
betheme 51,820
blocksy 50,688
dt-the7 46,160
twentytwentyfive 43,814
neve 39,351
Avada-Child-Theme 37,622
gox 33,449
woodmart 33,292
bridge 32,878
twentytwentyone 32,115
lightning 31,449
twentytwenty 30,045
swell 28,597
Impreza 26,441
bricks 26,019
sydney 25,643
twentytwentythree 24,026
Newspaper 23,472
voxel 22,440
twentytwentytwo 19,980
epik-redesign 19,270
kubio 19,178
uncode 19,113
sinatra 18,819
twentysixteen 18,221
storefront 17,869
pro 17,861
Total 14,730
extendable 14,595
yith-wonder 14,041
hello-theme-child-master 13,356
themify-ultra 12,983
yootheme 12,936
factory-templates-4 12,927
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!