Site Information
WordPress Version: 5.5.18 ⚠️ VULNERABLE
Theme: waxom (used by 173 domains)
Last Checked: 2026-07-07 03:43:17
HTTPS: ✅ Yes
Plugins (18)
| Plugin | Used By |
|---|---|
| addons-for-visual-composer | 3,170 |
| akismet | 85,999 |
| contact-form-7 | 1,781,993 |
| creame-whatsapp-me | 71,229 |
| dhvc-form | 812 |
| filebird-pro | 4,044 |
| gdpr-cookie-compliance | 69,753 |
| google-site-kit | 231,055 |
| gtranslate | 127,543 |
| ht-mega-for-wpbakery | 87 |
| js_composer | 428,469 |
| litespeed-cache | 140,944 |
| pojo-accessibility | 63,928 |
| revslider | 618,708 |
| templatera | 1,930 |
| vc-extensions-bundle | 5,326 |
| wp-consent-api | 53,162 |
| youtube-embed-plus | 37,922 |
Security Headers
D
Grade D
3 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (5.5.18) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.