Site Information
WordPress Version: 6.4.3 ⚠️ VULNERABLE
Theme: buddyboss-theme (used by 2,882 domains)
Last Checked: 2026-07-10 15:25:31
HTTPS: ✅ Yes
Plugins (15)
| Plugin | Used By |
|---|---|
| activecampaign-subscription-forms | 14,418 |
| affiliate-wp | 5,550 |
| buddyboss-platform | 3,168 |
| buddyboss-platform-pro | 2,455 |
| buddycommerce | 97 |
| divi-booster | 7,265 |
| divi-builder | 8,933 |
| divi-learndash-kit | 315 |
| event-tickets | 20,537 |
| learndash-course-grid | 1,612 |
| supreme-modules-pro-for-divi | 31,894 |
| uncanny-learndash-toolkit | 4,085 |
| woocommerce-follow-up-emails | 2,057 |
| woocommerce-login-and-registration | 121 |
| woocommerce-product-bundles | 9,025 |
Security Headers
F
Grade F
5 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (6.4.3) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.