WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for h*r*o*y*b*.wpengine.com

Site Information

WordPress Version: Unknown

Theme: astra (used by 737,402 domains)

Last Checked: 2026-04-25 22:59:14

HTTPS: ✅ Yes

Plugins (24)

Plugin Used By
add-search-to-menu-premium 779
age-gate 14,585
astra-addon 134,504
astra-pro-sites 32,294
autoship-cloud 184
burst-statistics 58,311
complianz-gdpr 294,915
contact-form-7 2,453,286
elementor 2,764,590
elementor-pro 1,546,618
header-footer-elementor 362,218
jet-blocks 33,328
klaviyo 12,737
shopengine 7,919
shopengine-pro 1,125
trustpilot-reviews 9,524
ultimate-elementor 94,702
unlimited-elementor-inner-sections-by-taspristudio 691
woo-discount-rules 24,254
woo-variation-swatches 53,953
woocommerce 1,302,776
woocommerce-gateway-authorize-net-cim 12,604
wp-store-locator 21,939
wpforms-lite 257,210

Security Headers

F
Grade F

6 missing headers

Missing Headers:

  • Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
  • Content-Security-Policy (CSP) — Prevents XSS attacks ?
  • X-Content-Type-Options — Prevents MIME sniffing ?
  • X-Frame-Options — Prevents clickjacking ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

✅ No Exposed Files Detected

Our automated scan did not detect any publicly-accessible sensitive files or critical misconfigurations on this domain.

However, this doesn't mean the site is completely secure. There are many other potential vulnerabilities that require deeper analysis:

  • Outdated WordPress core, themes, or plugins
  • Weak passwords and authentication
  • SQL injection vulnerabilities
  • Cross-site scripting (XSS) issues
  • Insecure server configurations

Questions about your WordPress security? Reach out — we offer comprehensive security audits and can help identify hidden vulnerabilities.

Top 50 Plugins

Plugin Count
elementor 2,763,705
contact-form-7 2,452,730
elementor-pro 1,546,184
woocommerce 1,302,279
revslider 924,221
js_composer 598,061
jetpack 497,596
wp-rocket 434,118
essential-addons-for-elementor-lite 415,356
header-footer-elementor 362,082
gutenberg-core 352,678
elementskit-lite 339,433
instagram-feed 313,147
google-analytics-for-wordpress 312,225
gravityforms 304,500
google-site-kit 301,253
complianz-gdpr 294,888
cookie-law-info 292,598
wpforms-lite 257,097
sitepress-multilingual-cms 254,170
astra-sites 250,354
bluehost-wordpress-plugin 241,097
litespeed-cache 224,187
gtranslate 183,504
coblocks 177,561
cookie-notice 169,990
gutenberg 162,533
the-events-calendar 149,080
popup-maker 140,281
premium-addons-for-elementor 135,669
astra-addon 134,465
bb-plugin 133,678
mailchimp-for-wp 132,167
LayerSlider 128,805
wp-smushit 127,445
custom-fonts 122,509
tablepress 120,972
creame-whatsapp-me 120,412
pro-elements 118,018
click-to-chat-for-whatsapp 115,581
woocommerce-gateway-stripe 112,342
duracelltomi-google-tag-manager 112,338
cleantalk-spam-protect 109,251
smart-slider-3 107,093
akismet 106,186
pixelyoursite 104,954
megamenu 103,736
fusion-builder 103,281
honeypot 102,819
royal-elementor-addons 102,709

Top 50 Themes

Theme Count
hello-elementor 881,464
astra 738,280
Divi 721,754
pub 234,524
generatepress 165,845
flatsome 165,155
Avada 155,165
h4 146,424
oceanwp 121,209
kadence 107,389
enfold 90,891
salient 88,032
bb-theme 85,966
twentytwentyfour 83,177
blocksy 81,531
twentytwentyfive 80,531
cocoon-master 76,912
betheme 72,668
twentyseventeen 70,094
woodmart 61,800
dt-the7 59,456
neve 52,307
twentytwentyone 45,266
bridge 44,342
swell 41,011
Avada-Child-Theme 39,544
twentytwenty 38,803
lightning 38,190
twentytwentythree 37,772
gox 37,336
bricks 31,465
Impreza 31,349
Newspaper 29,587
twentytwentytwo 28,978
epik-redesign 24,437
extendable 23,860
storefront 23,806
pro 23,711
uncode 23,090
yith-wonder 22,986
twentysixteen 22,667
sydney 21,681
themify-ultra 21,308
twentyfifteen 19,591
Total 19,472
porto 17,998
hestia 17,276
thrive-theme 16,469
yootheme 15,971
jupiter 15,762
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!