Site Information
WordPress Version: 7.0 ✓
Theme: astra (used by 417,242 domains)
Last Checked: 2026-07-01 13:28:33
HTTPS: ✅ Yes
Plugins (13)
| Plugin | Used By |
|---|---|
| a3-lazy-load | 22,658 |
| accessibility-onetap | 7,913 |
| astra-sites | 117,905 |
| atomic-blocks | 4,735 |
| audioigniter | 3,562 |
| compact-wp-audio-player | 6,666 |
| elementor | 1,746,902 |
| essential-addons-for-elementor-lite | 263,935 |
| genesis-blocks | 48,122 |
| phastpress | 1,946 |
| premium-addons-for-elementor | 84,709 |
| q2w3-fixed-widget | 17,333 |
| sassy-social-share | 28,215 |
Security Headers
B
Grade B
1 missing header
Missing Headers:
- Content-Security-Policy (CSP) — Prevents XSS attacks ?
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.