Site Information
WordPress Version: 6.4.8 ⚠️ VULNERABLE
Theme: pofo-child (used by 34 domains)
Last Checked: 2026-05-21 13:29:24
HTTPS: ❌ No
Plugins (11)
| Plugin | Used By |
|---|---|
| cookie-law-info | 234,190 |
| custom-password-protection-for-category | 0 |
| html5-video-player | 2,272 |
| js_composer | 429,064 |
| mega-addons-for-visual-composer | 6,165 |
| tablepress | 103,044 |
| woocommerce | 821,483 |
| wp-data-access | 3,745 |
| wp-date-remover | 1,867 |
| wp-smushit | 92,660 |
| youtube-embed-plus | 37,953 |
Security Headers
B
Grade B
1 missing header
Missing Headers:
- Permissions-Policy — Limits browser features ?
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (6.4.8) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
Need help securing your WordPress site? Contact us for a professional security audit.