Site Information
WordPress Version: 6.9.4 ✓
Theme: blocksy (used by 49,878 domains)
Last Checked: 2026-06-11 13:57:57
HTTPS: ✅ Yes
Plugins (11)
| Plugin | Used By |
|---|---|
| blocksy-companion | 18,878 |
| bootsschule-kategorie-sorter | 0 |
| borlabs-cookie | 79,062 |
| bs-custom-mail-v2 | 0 |
| contact-form-7 | 1,743,994 |
| stackable-ultimate-gutenberg-blocks | 12,902 |
| woocommerce | 800,545 |
| woocommerce-germanized | 16,114 |
| woocommerce-payments | 110,969 |
| woocommerce-paypal-payments | 48,360 |
| wp-whatsapp | 15,419 |
Security Headers
B
Grade B
1 missing header
Missing Headers:
- Content-Security-Policy (CSP) — Prevents XSS attacks ?
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.