WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for h*r*e*f*r*l*.org

Site Information

WordPress Version: 5.4.1 ⚠️ VULNERABLE

Theme: hfa (used by 7 domains)

Last Checked: 2026-05-03 10:37:47

HTTPS: ❌ No

Plugins (13)

Plugin Used By
all-in-one-video-gallery 880
blog-designer 2,795
charitable 1,672
contact-form-7 1,755,386
counter-number-showcase 2,865
download-monitor 19,420
kingcomposer 5,307
modern-events-calendar-lite 13,349
revslider 634,872
slide-anything 7,065
team-builder 1,360
tf-numbers-number-counter-animaton 608
user-registration 4,173

Security Headers

F
Grade F

6 missing headers

Missing Headers:

  • Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
  • Content-Security-Policy (CSP) — Prevents XSS attacks ?
  • X-Content-Type-Options — Prevents MIME sniffing ?
  • X-Frame-Options — Prevents clickjacking ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

  • ⚠️ Vulnerable WordPress Version (5.4.1) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin Count
elementor 1,838,086
contact-form-7 1,755,144
elementor-pro 1,055,714
woocommerce 848,956
revslider 634,780
jetpack 451,922
js_composer 432,611
wp-rocket 325,209
essential-addons-for-elementor-lite 286,981
gravityforms 255,614
complianz-gdpr 232,317
instagram-feed 226,802
header-footer-elementor 223,646
google-analytics-for-wordpress 219,084
cookie-law-info 218,164
google-site-kit 215,434
elementskit-lite 209,962
sitepress-multilingual-cms 206,539
gutenberg-core 203,904
bluehost-wordpress-plugin 195,469
gutenberg 153,062
wpforms-lite 147,243
astra-sites 139,452
cookie-notice 132,048
litespeed-cache 131,019
gtranslate 126,140
the-events-calendar 122,698
coblocks 115,311
popup-maker 114,366
woocommerce-payments 103,608
tablepress 97,355
astra-addon 94,373
bb-plugin 93,750
LayerSlider 93,148
wp-smushit 92,842
premium-addons-for-elementor 88,552
honeypot 88,395
duracelltomi-google-tag-manager 87,860
mailchimp-for-wp 86,836
all-in-one-seo-pack 85,531
akismet 85,296
cleantalk-spam-protect 84,888
woocommerce-gateway-stripe 82,028
megamenu 80,786
fusion-builder 78,846
formidable 77,021
smart-slider-3 75,792
creative-mail-by-constant-contact 75,475
ewww-image-optimizer 74,700
gravityformsrecaptcha 73,531

Top 50 Themes

Theme Count
hello-elementor 615,415
Divi 516,935
astra 453,978
pub 139,150
Avada 122,597
flatsome 118,599
generatepress 116,465
oceanwp 84,450
kadence 77,740
h4 74,243
enfold 69,545
salient 66,354
bb-theme 57,778
twentytwentyfour 56,530
twentyseventeen 55,433
cocoon-master 53,821
betheme 52,009
blocksy 51,703
twentytwentyfive 47,925
dt-the7 44,685
neve 38,731
Avada-Child-Theme 35,542
woodmart 35,498
twentytwentyone 33,608
bridge 33,062
gox 32,997
twentytwenty 30,108
lightning 29,565
swell 28,057
twentytwentythree 26,343
Impreza 25,004
bricks 24,787
Newspaper 22,079
twentytwentytwo 21,414
epik-redesign 20,222
pro 18,255
uncode 18,160
twentysixteen 18,150
storefront 17,890
extendable 17,583
sydney 16,401
yith-wonder 15,402
Total 14,419
themify-ultra 14,077
hestia 12,774
twentynineteen 12,453
porto 12,203
yootheme 12,150
twentyfifteen 12,094
thrive-theme 11,829
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!