Site Information
WordPress Version: 6.0.11 ⚠️ VULNERABLE
Theme: juniper (used by 26 domains)
Last Checked: 2026-06-18 20:44:18
HTTPS: ✅ Yes
Plugins (8)
| Plugin | Used By |
|---|---|
| contact-form-7 | 1,855,746 |
| highslide-4-wordpress-reloaded | 112 |
| pc-google-analytics | 2,258 |
| shortcodes-ultimate | 22,028 |
| simple-share-buttons-adder | 10,501 |
| social-media-widget | 9,868 |
| wordpress-23-related-posts-plugin | 2,218 |
| wp-video-lightbox | 11,028 |
Security Headers
D
Grade D
3 missing headers
Exposed Files & Configurations
This domain has publicly accessible security-sensitive files or configurations:
- Vulnerable WordPress Version (6.0.11) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
- User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?
Need help securing your WordPress site? Contact us for a professional security audit.