Site Information
WordPress Version: 7.0 ✓
Theme: oceanwp (used by 82,301 domains)
Last Checked: 2026-07-01 06:51:34
HTTPS: ✅ Yes
Plugins (26)
| Plugin | Used By |
|---|---|
| advanced-woo-search | 10,615 |
| audible-site-search | 39 |
| cookie-law-info | 229,011 |
| elementor | 1,748,847 |
| elementor-pro | 1,030,876 |
| elementskit-lite | 181,222 |
| essential-addons-for-elementor-lite | 264,383 |
| flexible-shipping | 20,045 |
| google-listings-and-ads | 24,824 |
| google-site-kit | 220,416 |
| gtranslate | 123,436 |
| header-footer-elementor | 207,136 |
| microsoft-advertising-universal-event-tracking-uet | 1,301 |
| ocean-extra | 59,153 |
| pro-elements | 62,413 |
| pymntpl-paypal-woocommerce | 1,857 |
| send-app | 2,850 |
| seo-by-rank-math-pro | 25,261 |
| site-reviews | 11,411 |
| tier-pricing-table | 1,999 |
| ultimate-social-media-icons | 27,028 |
| woo-variation-swatches | 31,607 |
| woocommerce | 800,545 |
| wp-consent-api | 50,709 |
| wp-rocket | 329,810 |
| yaycurrency-pro | 374 |
Security Headers
F
Grade F
6 missing headers
Missing Headers:
- Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
- Content-Security-Policy (CSP) — Prevents XSS attacks ?
- X-Content-Type-Options — Prevents MIME sniffing ?
- X-Frame-Options — Prevents clickjacking ?
- Referrer-Policy — Controls referrer information ?
- Permissions-Policy — Limits browser features ?
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.