WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for b*a*o*a*i*.com

Site Information

WordPress Version: 6.2.9 ⚠️ VULNERABLE

Theme: oceanwp (used by 111,619 domains)

Last Checked: 2026-04-11 12:15:52

HTTPS: ✅ Yes

Plugins (13)

Plugin Used By
clever-mega-menu-for-elementor 424
contact-form-7 2,278,322
custom-facebook-feed 50,659
elementor 2,527,783
essential-addons-for-elementor-lite 383,081
import-facebook-events 1,024
instagram-feed 290,444
mega-addons-for-visual-composer 7,913
ocean-extra 81,835
onesignal-free-web-push-notifications 21,116
smart-slider-3 99,413
sticky-menu-or-anything-on-scroll 24,164
wp-blog-and-widgets 1,792

Security Headers

F
Grade F

6 missing headers

Missing Headers:

  • Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
  • Content-Security-Policy (CSP) — Prevents XSS attacks ?
  • X-Content-Type-Options — Prevents MIME sniffing ?
  • X-Frame-Options — Prevents clickjacking ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

  • ⚠️ Vulnerable WordPress Version (6.2.9) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin Count
elementor 2,526,802
contact-form-7 2,277,621
elementor-pro 1,421,953
woocommerce 1,182,024
revslider 850,913
js_composer 557,290
jetpack 489,601
wp-rocket 407,248
essential-addons-for-elementor-lite 382,959
header-footer-elementor 326,489
gutenberg-core 310,592
elementskit-lite 306,387
gravityforms 294,309
instagram-feed 290,354
google-analytics-for-wordpress 287,819
google-site-kit 280,053
complianz-gdpr 280,022
cookie-law-info 274,921
sitepress-multilingual-cms 244,232
bluehost-wordpress-plugin 229,571
wpforms-lite 227,795
astra-sites 220,378
litespeed-cache 200,291
gtranslate 169,605
gutenberg 161,573
cookie-notice 160,949
coblocks 160,814
the-events-calendar 142,644
popup-maker 134,490
astra-addon 124,293
premium-addons-for-elementor 123,758
bb-plugin 123,460
LayerSlider 120,163
mailchimp-for-wp 120,139
wp-smushit 118,705
tablepress 115,517
creame-whatsapp-me 108,808
duracelltomi-google-tag-manager 106,664
custom-fonts 106,354
pro-elements 105,328
woocommerce-gateway-stripe 104,494
click-to-chat-for-whatsapp 103,091
cleantalk-spam-protect 103,061
akismet 101,353
honeypot 99,423
smart-slider-3 99,378
megamenu 98,594
fusion-builder 97,364
pixelyoursite 97,084
formidable 93,772

Top 50 Themes

Theme Count
hello-elementor 814,793
Divi 669,263
astra 663,737
pub 207,693
generatepress 153,055
flatsome 151,598
Avada 147,565
h4 125,378
oceanwp 111,769
kadence 99,521
enfold 85,828
salient 82,879
bb-theme 78,570
twentytwentyfour 76,265
blocksy 73,519
twentytwentyfive 71,810
cocoon-master 70,554
betheme 67,709
twentyseventeen 66,572
dt-the7 55,761
woodmart 55,117
neve 48,902
twentytwentyone 42,385
bridge 41,596
Avada-Child-Theme 38,875
swell 37,577
twentytwenty 36,716
gox 36,493
lightning 36,153
twentytwentythree 34,860
Impreza 29,885
bricks 29,885
Newspaper 27,572
twentytwentytwo 27,079
epik-redesign 23,397
extendable 22,403
pro 22,390
storefront 22,309
uncode 21,925
twentysixteen 21,545
yith-wonder 20,953
sydney 20,328
themify-ultra 19,480
Total 18,179
twentyfifteen 17,486
porto 16,658
hestia 16,053
thrive-theme 15,189
yootheme 15,117
twentynineteen 14,917
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!