www.businesstornio.fi

Scanned May 19, 2026, 06:12 AM

Run a fresh audit — Upgrade

A · Safe

Plugins Detected

Active Vulnerabilities

Outdated Plugins

Abandoned

Security Assessment

Key findings for www.businesstornio.fi

2 active vulnerabilities detected across 5 plugins.
1 plugin is outdated and should be updated.
Security headers grade F — 3 important headers are missing.
4 sensitive paths exposed to the public.

WordPress

Version hidden

Core installation

Active Theme

hoyrymoottori v533.3401

Up to date

Hosting Provider

Unknown

Infrastructure

Detected Plugins

5 total

Plugin	Version	Status	Vulnerabilities	Score
Polylang high confidence	3.8.2	Up to date	None found	94
SVG Support medium confidence	2.5.8→2.5.14	Outdated	mediumCVE-2022-23638 mediumCVE-2024-10222	89
Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder medium confidence	6.2.0	Up to date	None found	82
FluentSMTP – WP SMTP Plugin with Amazon SES, SendGrid, MailGun, Postmark, Google and Any SMTP Provider medium confidence	2.2.95	Up to date	None found	93
Advanced Access Manager – Access Governance for WordPress medium confidence	7.1.0	Up to date	None found	95

Unlock the full security analysis

Get the full breakdown of your site's security posture:

All 5 detected plugins

CVE details & patch status

Security header analysis

Exposed paths & TLS audit

DNS & email security

CT log subdomain discovery

Security Report

one-time

$49USD

Full report for this site
Every detected plugin & CVE
Remediation guidance
No re-audit after fixes

Get Report — $49

Recommended

Report + Re-audit

best value

$99USD

Everything in Security Report
One complimentary re-audit within 90 days
Verify your fixes actually closed the findings
Clean-record badge for your site

Get Report + Re-audit — $99

Guided Remediation

small business

$299USD

Everything in Report + Re-audit
15–30 min expert consult to triage findings
Prioritized action plan for your site
Optional partner handoff for fixes

Get Guided Remediation — $299

One-time payment · Instant access · No subscription required

Not ready to buy? We'll send you a one-time free alert

if we detect a new vulnerability affecting your plugins.

One free alert · Continuous monitoring available with a paid plan

Security Posture

Security Headers

TLS/SSL

Exposed Paths

Email Security

Security Headers

33/100

Content-Security-Policy

No Content-Security-Policy header. Your site is more vulnerable to XSS attacks.

Strict-Transport-Security

No HSTS header. Browsers can be tricked into using insecure HTTP connections.

X-Frame-Options

No clickjacking protection. Your site can be embedded in malicious iframes.

3 more checks — unlock full report to see all

TLS/SSL Certificate

Issuer

WE1

Expires

73 days

Protocol

TLSv1.3

Wildcard

Yes

Exposed Paths & Login Security

4 exposed

4 security issues found — unlock to see which paths are exposed.

DNS & Email Security

SPF

SPF record with soft fail (~all) — good email authentication.

DMARC

No DMARC record found.

DKIM

No DKIM record found for common selectors. Email authenticity cannot be verified (or uses a non-standard selector).

Infrastructure

Server Software

Server: cloudflare

X-Powered-By

X-Powered-By header is not exposed.

Web Application Firewall

Cloudflare WAF detected — provides additional protection against attacks.

Scan another site