Site Information
WordPress Version: 6.4.8 ⚠️ VULNERABLE
Theme: sporty (used by 239 domains)
Last Checked: 2026-06-07 20:04:05
HTTPS: ✅ Yes
Plugins (10)
| Plugin | Used By |
|---|---|
| column-shortcodes | 15,865 |
| dvteam | 274 |
| dysania-grid-gallery | 78 |
| masterelements | 11 |
| shortcodes-ultimate | 20,613 |
| sporty-fixtures-results-sponsors | 51 |
| sporty-flexslider | 39 |
| sporty-shortcodes-and-widgets | 57 |
| tablepress | 107,487 |
| tablepress-responsive-tables | 6,823 |
Security Headers
F
Grade F
5 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (6.4.8) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.