WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for b*a*g*l*c*a*t.c*m.au

Site Information

WordPress Version: 4.9.26 ⚠️ VULNERABLE

Theme: fraction-theme (used by 13 domains)

Last Checked: 2026-04-30 16:48:46

HTTPS: ✅ Yes

Plugins (10)

Plugin Used By
advanced-post-slider 881
business-directory-plugin 1,097
content-views-query-and-display-post-page 30,285
easy-facebook-likebox 7,574
easy-sign-up 388
google-analytics-for-wordpress 272,271
popup-by-supsystic 965
search-filter 15,004
user-submitted-posts 3,884
woocommerce 1,107,068

Security Headers

F
Grade F

6 missing headers

Missing Headers:

  • Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
  • Content-Security-Policy (CSP) — Prevents XSS attacks ?
  • X-Content-Type-Options — Prevents MIME sniffing ?
  • X-Frame-Options — Prevents clickjacking ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

  • ⚠️ Vulnerable WordPress Version (4.9.26) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
  • 📂 Directory listing exposed — /dev/ is publicly browsable ?

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin Count
elementor 2,368,660
contact-form-7 2,165,742
elementor-pro 1,339,282
woocommerce 1,106,703
revslider 804,310
js_composer 530,877
jetpack 484,639
wp-rocket 389,835
essential-addons-for-elementor-lite 359,758
header-footer-elementor 302,272
gravityforms 287,280
gutenberg-core 285,037
elementskit-lite 282,099
instagram-feed 275,782
google-analytics-for-wordpress 272,178
complianz-gdpr 270,429
google-site-kit 265,816
cookie-law-info 263,112
sitepress-multilingual-cms 237,355
bluehost-wordpress-plugin 222,062
wpforms-lite 208,504
astra-sites 200,980
litespeed-cache 184,041
gutenberg 161,055
gtranslate 160,356
cookie-notice 154,723
coblocks 151,046
the-events-calendar 138,588
popup-maker 130,621
astra-addon 117,526
bb-plugin 116,893
premium-addons-for-elementor 115,563
LayerSlider 114,529
wp-smushit 112,870
mailchimp-for-wp 112,465
tablepress 112,043
duracelltomi-google-tag-manager 102,991
creame-whatsapp-me 101,138
woocommerce-gateway-stripe 99,458
cleantalk-spam-protect 99,356
akismet 98,244
honeypot 97,491
pro-elements 96,302
custom-fonts 95,998
megamenu 95,219
click-to-chat-for-whatsapp 94,671
smart-slider-3 94,485
fusion-builder 93,566
woocommerce-payments 93,551
pixelyoursite 91,524

Top 50 Themes

Theme Count
hello-elementor 769,644
Divi 635,348
astra 614,047
pub 191,746
generatepress 144,742
flatsome 144,379
Avada 142,802
h4 112,219
oceanwp 105,657
kadence 94,582
enfold 82,321
salient 79,395
bb-theme 73,914
twentytwentyfour 71,880
blocksy 68,513
cocoon-master 66,956
twentytwentyfive 66,128
betheme 64,393
twentyseventeen 64,315
dt-the7 53,473
woodmart 50,720
neve 46,795
twentytwentyone 40,531
bridge 39,831
Avada-Child-Theme 38,321
gox 35,982
swell 35,730
twentytwenty 35,365
lightning 35,050
twentytwentythree 32,983
bricks 28,895
Impreza 28,845
Newspaper 26,260
twentytwentytwo 25,826
epik-redesign 22,776
pro 21,533
storefront 21,429
extendable 21,361
uncode 21,205
twentysixteen 20,923
yith-wonder 19,625
sydney 19,495
themify-ultra 18,258
Total 17,405
twentyfifteen 16,409
porto 15,712
hestia 15,361
yootheme 14,498
thrive-theme 14,418
twentynineteen 14,414
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!