Site Information
WordPress Version: 6.4.8 ⚠️ VULNERABLE
Theme: oyster (used by 111 domains)
Last Checked: 2026-07-04 18:06:03
HTTPS: ✅ Yes
Plugins (8)
| Plugin | Used By |
|---|---|
| ajax-search-for-woocommerce | 20,966 |
| contact-form-7 | 1,781,063 |
| theme-my-login | 10,995 |
| wc-product-table-lite | 1,531 |
| woocommerce | 822,220 |
| woocommerce-colors-and-swatches-for-variations | 10 |
| woocommerce-menu-bar-cart | 14,044 |
| wpfront-scroll-top | 33,960 |
Security Headers
C
Grade C
2 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (6.4.8) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.