Site Information
WordPress Version: 5.2.24 ⚠️ VULNERABLE
Theme: oceanwp (used by 83,856 domains)
Last Checked: 2026-07-10 01:06:30
HTTPS: ✅ Yes
Plugins (10)
| Plugin | Used By |
|---|---|
| contact-form-7 | 1,794,222 |
| elementor | 1,804,795 |
| elementor-pro | 1,066,142 |
| jet-elements | 67,202 |
| ocean-extra | 59,919 |
| ocean-product-sharing | 2,019 |
| ocean-social-sharing | 7,986 |
| popup-anything-on-click | 6,907 |
| sticky-header-effects-for-elementor | 38,194 |
| sticky-menu-or-anything-on-scroll | 19,412 |
Security Headers
F
Grade F
5 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (5.2.24) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.