WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for t*h*o.c*m.br

Site Information

WordPress Version: 6.3.5 ⚠️ VULNERABLE

Theme: tahto

Last Checked: 2026-06-16 13:41:27

HTTPS: ✅ Yes

Plugins (7)

Plugin Used By
cf7-phone-mask-field 2,974
contact-form-7 1,739,229
cookie-law-info 228,015
creame-whatsapp-me 69,638
google-site-kit 219,372
pixelyoursite 74,471
responsive-lightbox 33,506

Security Headers

D
Grade D

3 missing headers

Missing Headers:

  • X-Content-Type-Options — Prevents MIME sniffing ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

  • ⚠️ Vulnerable WordPress Version (6.3.5) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
  • 👤 User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin Count
elementor 1,744,327
contact-form-7 1,739,229
elementor-pro 1,027,788
woocommerce 797,925
revslider 605,663
jetpack 456,403
js_composer 420,900
wp-rocket 327,985
essential-addons-for-elementor-lite 264,002
complianz-gdpr 256,882
gravityforms 251,116
cookie-law-info 228,015
instagram-feed 225,059
google-site-kit 219,372
sitepress-multilingual-cms 209,712
google-analytics-for-wordpress 207,790
header-footer-elementor 206,578
bluehost-wordpress-plugin 185,580
elementskit-lite 181,214
gutenberg-core 161,365
gutenberg 159,852
cookie-notice 150,782
litespeed-cache 130,768
wpforms-lite 128,077
the-events-calendar 124,824
gtranslate 122,976
astra-sites 118,495
popup-maker 111,909
woocommerce-payments 110,959
tablepress 99,723
coblocks 99,183
honeypot 96,237
astra-addon 93,115
all-in-one-seo-pack 91,664
wp-smushit 91,020
LayerSlider 89,839
duracelltomi-google-tag-manager 89,212
bb-plugin 85,448
premium-addons-for-elementor 84,729
akismet 83,659
cleantalk-spam-protect 82,375
mailchimp-for-wp 82,191
woocommerce-gateway-stripe 79,841
megamenu 79,695
borlabs-cookie 79,524
ml-slider 78,664
fusion-builder 77,466
ewww-image-optimizer 75,442
formidable 75,398
smart-slider-3 75,144

Top 50 Themes

Theme Count
hello-elementor 606,398
Divi 501,867
astra 417,125
flatsome 125,696
Avada 121,657
generatepress 115,745
pub 111,465
oceanwp 82,272
kadence 78,633
enfold 70,932
salient 65,007
h4 55,474
twentyseventeen 54,842
twentytwentyfour 52,644
bb-theme 51,719
betheme 51,552
cocoon-master 50,876
blocksy 49,730
dt-the7 45,261
twentytwentyfive 43,293
neve 38,751
Avada-Child-Theme 36,699
gox 34,496
woodmart 32,986
bridge 32,224
twentytwentyone 31,352
lightning 29,583
twentytwenty 28,979
swell 27,861
Impreza 26,096
bricks 25,386
twentytwentythree 23,372
Newspaper 23,298
twentytwentytwo 19,595
epik-redesign 19,302
uncode 18,515
twentysixteen 17,588
pro 17,119
sydney 16,624
storefront 16,445
extendable 14,924
Total 14,496
yith-wonder 13,365
hello-theme-child-master 13,309
factory-templates-4 13,223
themify-ultra 12,876
yootheme 12,638
hestia 12,610
twentynineteen 11,800
porto 11,713
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!