Site Information
WordPress Version: Unknown
Theme: blossom-spa (used by 955 domains)
Last Checked: 2026-05-01 04:30:26
HTTPS: ✅ Yes
Plugins (23)
| Plugin | Used By |
|---|---|
| ajax-search-lite | 17,749 |
| autoptimize | 61,512 |
| better-speed | 9 |
| blossomthemes-email-newsletter | 4,096 |
| blossomthemes-toolkit | 6,405 |
| burst-statistics | 50,241 |
| click-to-chat-for-whatsapp | 90,400 |
| fast-cookie-consent | 0 |
| g-business-reviews-rating | 6,776 |
| give | 20,557 |
| honeypot | 96,680 |
| lightbox-photoswipe | 5,698 |
| mailgo | 102 |
| moody-weather | 0 |
| page-visit-counter-analytics | 9 |
| qa-heatmap-analytics | 598 |
| responsive-gallery-grid | 972 |
| simple-banner | 20,187 |
| simply-schedule-appointments | 11,340 |
| site-reviews | 16,014 |
| track-the-click | 2,136 |
| widget-options | 31,626 |
| wp-ecommerce-paypal | 2,818 |
Security Headers
6 missing headers
Missing Headers:
- Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
- Content-Security-Policy (CSP) — Prevents XSS attacks ?
- X-Content-Type-Options — Prevents MIME sniffing ?
- X-Frame-Options — Prevents clickjacking ?
- Referrer-Policy — Controls referrer information ?
- Permissions-Policy — Limits browser features ?
Exposed Files & Configurations
✅ No Exposed Files Detected
Our automated scan did not detect any publicly-accessible sensitive files or critical misconfigurations on this domain.
However, this doesn't mean the site is completely secure. There are many other potential vulnerabilities that require deeper analysis:
- Outdated WordPress core, themes, or plugins
- Weak passwords and authentication
- SQL injection vulnerabilities
- Cross-site scripting (XSS) issues
- Insecure server configurations
Questions about your WordPress security? Reach out — we offer comprehensive security audits and can help identify hidden vulnerabilities.