Site Information
WordPress Version: 6.0.12 ⚠️ VULNERABLE
Theme: tripsitter
Last Checked: 2026-07-03 03:42:54
HTTPS: ✅ Yes
Plugins (6)
| Plugin | Used By |
|---|---|
| accordion-blocks | 7,043 |
| svg-support | 28,909 |
| table-of-contents-plus | 43,332 |
| wp-search-with-algolia | 2,026 |
| wpfront-scroll-top | 34,022 |
| yikes-inc-easy-mailchimp-extender | 2,600 |
Security Headers
D
Grade D
3 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (6.0.12) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.