WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for h*f*i*.com

Site Information

WordPress Version: 4.9.8 ⚠️ VULNERABLE

Theme: bober (used by 42 domains)

Last Checked: 2026-05-03 15:31:48

HTTPS: ✅ Yes

Plugins (17)

Plugin Used By
content_timeline 375
gravityforms 280,881
js_composer 504,832
login-with-ajax 4,056
mpc-massive 4,171
responsive-lightbox 35,323
search-filter 14,662
sidebar-login 1,478
templatera 2,167
ultimate-member 33,657
um-docs 21
um-gallery-pro 30
um-online 61
videojs-html5-video-player-for-wordpress 801
woocommerce 1,034,404
wp-statistics 57,041
yith-woocommerce-subscription-premium 668

Security Headers

F
Grade F

6 missing headers

Missing Headers:

  • Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
  • Content-Security-Policy (CSP) — Prevents XSS attacks ?
  • X-Content-Type-Options — Prevents MIME sniffing ?
  • X-Frame-Options — Prevents clickjacking ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

  • ⚠️ Vulnerable WordPress Version (4.9.8) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin Count
elementor 2,221,345
contact-form-7 2,054,189
elementor-pro 1,261,302
woocommerce 1,033,976
revslider 758,124
js_composer 504,652
jetpack 480,204
wp-rocket 372,639
essential-addons-for-elementor-lite 340,186
gravityforms 280,852
header-footer-elementor 279,924
gutenberg-core 262,381
instagram-feed 261,726
elementskit-lite 261,496
complianz-gdpr 260,966
google-analytics-for-wordpress 257,823
google-site-kit 252,287
cookie-law-info 251,413
sitepress-multilingual-cms 229,400
bluehost-wordpress-plugin 216,220
wpforms-lite 190,854
astra-sites 182,961
litespeed-cache 168,532
gutenberg 160,726
gtranslate 150,787
cookie-notice 148,850
coblocks 141,957
the-events-calendar 134,829
popup-maker 127,065
astra-addon 111,279
bb-plugin 110,791
LayerSlider 108,844
tablepress 108,424
premium-addons-for-elementor 107,955
wp-smushit 107,485
mailchimp-for-wp 105,241
duracelltomi-google-tag-manager 99,202
woocommerce-payments 98,446
cleantalk-spam-protect 95,944
honeypot 95,736
akismet 95,341
woocommerce-gateway-stripe 94,855
creame-whatsapp-me 93,043
megamenu 91,661
fusion-builder 89,827
smart-slider-3 89,430
pro-elements 88,201
custom-fonts 87,133
formidable 87,024
pixelyoursite 86,354

Top 50 Themes

Theme Count
hello-elementor 727,749
Divi 604,045
astra 568,386
pub 177,151
Avada 137,693
generatepress 136,846
flatsome 136,539
h4 101,007
oceanwp 99,936
kadence 90,127
enfold 79,080
salient 76,108
bb-theme 69,545
twentytwentyfour 68,018
blocksy 63,733
cocoon-master 62,997
twentyseventeen 62,138
twentytwentyfive 61,082
betheme 61,022
dt-the7 51,297
woodmart 46,212
neve 44,841
twentytwentyone 38,782
bridge 38,095
Avada-Child-Theme 37,853
gox 35,544
twentytwenty 34,057
lightning 33,395
swell 33,339
twentytwentythree 31,252
bricks 27,949
Impreza 27,867
Newspaper 25,182
twentytwentytwo 24,678
epik-redesign 22,326
pro 20,681
storefront 20,567
uncode 20,488
extendable 20,480
twentysixteen 20,197
sydney 18,670
yith-wonder 18,506
themify-ultra 17,130
Total 16,622
twentyfifteen 15,144
hestia 14,715
porto 14,702
twentynineteen 13,923
yootheme 13,874
thrive-theme 13,781
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!