Site Information
WordPress Version: 4.9.13 ⚠️ VULNERABLE
Theme: customify (used by 6,642 domains)
Last Checked: 2026-06-30 15:17:41
HTTPS: ✅ Yes
Plugins (16)
| Plugin | Used By |
|---|---|
| events-manager | 17,875 |
| jetpack-1 | 0 |
| lana-downloads-manager | 630 |
| latest-post-shortcode | 1,085 |
| livemesh-siteorigin-widgets | 3,876 |
| login-sidebar-widget | 1,099 |
| page-links-to | 59,710 |
| page-list | 10,638 |
| siteorigin-panels | 59,416 |
| smart-logo-showcase-lite | 1,402 |
| so-widgets-bundle | 30,109 |
| vfb-pro | 3,637 |
| vfbp-display-entries | 206 |
| wc-shortcodes | 4,607 |
| wp-job-openings | 9,115 |
| wp-stats-manager | 4,418 |
Security Headers
F
Grade F
5 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (4.9.13) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.