Site Information
WordPress Version: 5.7.15 ⚠️ VULNERABLE
Theme: roseta (used by 345 domains)
Last Checked: 2026-07-14 22:13:53
HTTPS: ✅ Yes
Plugins (14)
| Plugin | Used By |
|---|---|
| addon-elements-for-elementor-page-builder | 17,252 |
| bdthemes-element-pack-lite | 13,028 |
| easy-table-of-contents | 18,771 |
| elementor | 1,793,467 |
| exclusive-addons-for-elementor | 7,384 |
| free-sales-funnel-squeeze-pages-landing-page-builder-templates-make | 43 |
| full-site-builder-for-elementor | 71 |
| modal-for-elementor | 438 |
| modern-events-calendar-lite | 14,333 |
| page-links-to | 58,940 |
| post-grid-elementor-addon | 2,637 |
| very-simple-event-list | 2,294 |
| wpb-elementor-addons | 594 |
| wpforms-lite | 127,965 |
Security Headers
D
Grade D
4 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (5.7.15) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.