Domain: t*u*k*a*v*g*.c*m.au

Domain Details for t*u*k*a*v*g*.c*m.au

Site Information

WordPress Version: 6.3.8 ⚠️ VULNERABLE

Theme: flash (used by 2,855 domains)

Last Checked: 2026-06-07 07:59:21

HTTPS: ✅ Yes

Plugins (3)

Plugin	Used By
contact-form-7	1,824,036
wp-customer-reviews	5,846
wpcf7-redirect	58,671

Security Headers

Grade F

5 missing headers

Missing Headers:

Strict-Transport-Security (HSTS) — Forces HTTPS connections ?
Content-Security-Policy (CSP) — Prevents XSS attacks ?
X-Content-Type-Options — Prevents MIME sniffing ?
X-Frame-Options — Prevents clickjacking ?
Referrer-Policy — Controls referrer information ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

⚠️ Vulnerable WordPress Version (6.3.8) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
👤 User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin	Count
elementor	1,853,982
contact-form-7	1,824,242
elementor-pro	1,079,666
woocommerce	837,953
revslider	634,084
jetpack	476,287
js_composer	444,260
wp-rocket	344,896
essential-addons-for-elementor-lite	304,971
gravityforms	297,593
complianz-gdpr	266,410
cookie-law-info	239,557
instagram-feed	234,194
google-site-kit	228,065
sitepress-multilingual-cms	227,639
google-analytics-for-wordpress	219,146
header-footer-elementor	215,701
elementskit-lite	215,335
bluehost-wordpress-plugin	192,135
gutenberg	165,644
gutenberg-core	164,038
cookie-notice	158,158
litespeed-cache	138,389
the-events-calendar	136,486
wpforms-lite	132,399
gtranslate	131,741
astra-sites	121,813
popup-maker	119,220
woocommerce-payments	115,110
tablepress	114,259
coblocks	102,359
honeypot	100,795
astra-addon	97,721
duracelltomi-google-tag-manager	96,519
wp-smushit	96,107
all-in-one-seo-pack	95,647
LayerSlider	94,031
bb-plugin	92,475
megamenu	89,546
premium-addons-for-elementor	89,292
akismet	87,733
mailchimp-for-wp	85,899
cleantalk-spam-protect	85,524
woocommerce-gateway-stripe	85,097
ml-slider	83,778
borlabs-cookie	82,727
fusion-builder	81,876
wp-pagenavi	81,757
ewww-image-optimizer	81,191
smart-slider-3	80,072

Plugin

Count

1,853,982

1,824,242

1,079,666

837,953

634,084

476,287

444,260

344,896

essential-addons-for-elementor-lite

304,971

297,593

266,410

239,557

234,194

228,065

sitepress-multilingual-cms

227,639

google-analytics-for-wordpress

219,146

header-footer-elementor

215,701

elementskit-lite

215,335

bluehost-wordpress-plugin

192,135

165,644

164,038

158,158

138,389

136,486

132,399

131,741

121,813

119,220

115,110

114,259

102,359

100,795

97,721

duracelltomi-google-tag-manager

96,519

96,107

95,647

94,031

92,475

89,546

premium-addons-for-elementor

89,292

akismet

87,733

mailchimp-for-wp

85,899

cleantalk-spam-protect

85,524

woocommerce-gateway-stripe

85,097

83,778

82,727

81,876

81,757

81,191

80,072

Top 50 Themes

Theme	Count
hello-elementor	634,290
Divi	524,258
astra	434,451
flatsome	144,160
Avada	127,673
generatepress	127,171
pub	112,934
twentytwentyfour	86,024
oceanwp	85,856
kadence	81,310
enfold	73,951
sydney	68,854
salient	68,356
twentyseventeen	57,976
h4	57,965
bb-theme	56,264
betheme	53,476
cocoon-master	52,585
blocksy	52,542
dt-the7	47,464
twentytwentyfive	45,506
neve	40,672
Avada-Child-Theme	38,593
woodmart	34,194
gox	34,143
bridge	33,672
twentytwentyone	32,976
lightning	32,206
twentytwenty	30,922
swell	28,990
Impreza	27,393
bricks	26,782
voxel	26,186
twentytwentythree	24,606
Newspaper	24,441
sinatra	23,657
kubio	21,805
twentytwentytwo	20,334
uncode	19,696
epik-redesign	19,283
twentysixteen	18,921
storefront	18,389
pro	18,135
Total	15,131
extendable	14,931
yith-wonder	14,124
hello-theme-child-master	13,776
yootheme	13,391
themify-ultra	13,380
hestia	13,293

Theme

Count

634,290

524,258

434,451

144,160

127,673