WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for h*f*i*o*x.com

Site Information

WordPress Version: 4.9.8 ⚠️ VULNERABLE

Theme: hpf (used by 7 domains)

Last Checked: 2026-06-07 01:39:09

HTTPS: ✅ Yes

Plugins (3)

Plugin Used By
add-to-any 75,856
google-analytics-for-wordpress 214,464
instagram-feed 228,559

Security Headers

F
Grade F

5 missing headers

Missing Headers:

  • Content-Security-Policy (CSP) — Prevents XSS attacks ?
  • X-Content-Type-Options — Prevents MIME sniffing ?
  • X-Frame-Options — Prevents clickjacking ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

  • ⚠️ Vulnerable WordPress Version (4.9.8) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
  • 👤 User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin Count
elementor 1,804,676
contact-form-7 1,774,647
elementor-pro 1,052,070
woocommerce 818,340
revslider 619,144
jetpack 467,731
js_composer 433,323
wp-rocket 334,871
essential-addons-for-elementor-lite 294,324
gravityforms 267,431
complianz-gdpr 257,450
cookie-law-info 231,984
instagram-feed 228,564
google-site-kit 222,556
sitepress-multilingual-cms 221,752
google-analytics-for-wordpress 214,471
header-footer-elementor 210,692
elementskit-lite 207,322
bluehost-wordpress-plugin 190,863
gutenberg 162,584
gutenberg-core 159,846
cookie-notice 151,934
the-events-calendar 131,901
litespeed-cache 131,432
wpforms-lite 129,761
gtranslate 128,218
astra-sites 119,760
popup-maker 116,331
woocommerce-payments 113,135
tablepress 109,632
coblocks 99,799
honeypot 97,660
astra-addon 95,518
duracelltomi-google-tag-manager 93,815
wp-smushit 93,763
all-in-one-seo-pack 93,505
LayerSlider 91,849
bb-plugin 90,940
premium-addons-for-elementor 87,068
megamenu 86,751
akismet 86,190
cleantalk-spam-protect 84,014
mailchimp-for-wp 83,922
woocommerce-gateway-stripe 83,240
ml-slider 81,279
fusion-builder 79,819
borlabs-cookie 79,764
ewww-image-optimizer 79,228
wp-pagenavi 79,010
formidable 78,217

Top 50 Themes

Theme Count
hello-elementor 617,059
Divi 511,773
astra 424,516
flatsome 134,423
Avada 124,557
generatepress 120,600
pub 110,164
oceanwp 83,645
kadence 78,687
enfold 71,972
salient 66,826
twentytwentyfour 59,044
h4 56,523
twentyseventeen 56,327
bb-theme 55,346
cocoon-master 52,131
betheme 51,975
blocksy 50,852
dt-the7 46,271
twentytwentyfive 43,949
neve 39,466
Avada-Child-Theme 37,700
gox 33,497
woodmart 33,358
bridge 32,952
sydney 32,697
twentytwentyone 32,175
lightning 31,481
twentytwenty 30,111
swell 28,627
Impreza 26,527
bricks 26,071
twentytwentythree 24,067
Newspaper 23,540
voxel 22,441
twentytwentytwo 20,010
epik-redesign 19,274
sinatra 19,268
kubio 19,196
uncode 19,156
twentysixteen 18,262
storefront 17,916
pro 17,884
Total 14,759
extendable 14,627
yith-wonder 14,051
hello-theme-child-master 13,391
themify-ultra 13,012
yootheme 12,981
factory-templates-4 12,937
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!