WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for b*e*l*s.com

Site Information

WordPress Version: 6.4.8 ⚠️ VULNERABLE

Theme: spring-plant (used by 57 domains)

Last Checked: 2026-06-06 21:18:40

HTTPS: ✅ Yes

Plugins (17)

Plugin Used By
1and1-wordpress-assistant 5,721
contact-form-7 1,766,500
cookie-notice 150,866
creame-whatsapp-me 69,335
easy-side-tab-pro 218
everest-gallery-lite 293
final-tiles-grid-gallery-lite 4,182
formidable 77,925
instagram-widget-by-wpzoom 6,140
js_composer 431,466
no-right-click-images-plugin 5,497
revslider 616,475
spring-framework 71
woocommerce 815,025
yith-woocommerce-ajax-navigation 7,353
yith-woocommerce-compare 11,266
yith-woocommerce-wishlist 42,208

Security Headers

F
Grade F

6 missing headers

Missing Headers:

  • Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
  • Content-Security-Policy (CSP) — Prevents XSS attacks ?
  • X-Content-Type-Options — Prevents MIME sniffing ?
  • X-Frame-Options — Prevents clickjacking ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

  • ⚠️ Vulnerable WordPress Version (6.4.8) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
  • 👤 User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin Count
elementor 1,796,741
contact-form-7 1,766,546
elementor-pro 1,047,260
woocommerce 815,042
revslider 616,486
jetpack 466,278
js_composer 431,474
wp-rocket 333,316
essential-addons-for-elementor-lite 293,145
gravityforms 266,592
complianz-gdpr 255,931
cookie-law-info 230,628
instagram-feed 227,636
google-site-kit 221,594
sitepress-multilingual-cms 220,708
google-analytics-for-wordpress 213,613
header-footer-elementor 209,754
elementskit-lite 206,554
bluehost-wordpress-plugin 190,677
gutenberg 162,083
gutenberg-core 159,164
cookie-notice 150,869
the-events-calendar 131,142
litespeed-cache 130,431
wpforms-lite 129,343
gtranslate 127,652
astra-sites 119,407
popup-maker 115,819
woocommerce-payments 112,815
tablepress 108,825
coblocks 99,308
honeypot 97,125
astra-addon 95,116
wp-smushit 93,343
duracelltomi-google-tag-manager 93,328
all-in-one-seo-pack 93,096
LayerSlider 91,463
bb-plugin 90,683
premium-addons-for-elementor 86,707
megamenu 86,279
akismet 85,938
cleantalk-spam-protect 83,757
mailchimp-for-wp 83,585
woocommerce-gateway-stripe 82,978
ml-slider 80,826
fusion-builder 79,481
borlabs-cookie 79,231
ewww-image-optimizer 78,903
wp-pagenavi 78,615
formidable 77,926

Top 50 Themes

Theme Count
hello-elementor 614,199
Divi 509,746
astra 422,824
flatsome 132,849
Avada 124,112
generatepress 119,667
pub 109,731
oceanwp 83,251
kadence 78,264
enfold 71,684
salient 66,622
twentytwentyfour 58,741
h4 56,268
twentyseventeen 56,055
bb-theme 55,201
cocoon-master 52,071
betheme 51,693
blocksy 50,524
dt-the7 46,049
twentytwentyfive 43,672
neve 39,246
Avada-Child-Theme 37,532
gox 33,400
woodmart 33,232
bridge 32,813
twentytwentyone 32,058
lightning 31,414
twentytwenty 29,980
swell 28,566
Impreza 26,363
bricks 25,959
twentytwentythree 23,984
Newspaper 23,408
sydney 23,318
voxel 22,439
twentytwentytwo 19,960
epik-redesign 19,270
uncode 19,069
kubio 18,843
sinatra 18,674
twentysixteen 18,163
storefront 17,841
pro 17,833
Total 14,695
extendable 14,576
yith-wonder 14,035
hello-theme-child-master 13,314
themify-ultra 12,964
factory-templates-4 12,913
yootheme 12,910
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!