Skip to main content
Destiny QA home
Back to help

Guide

Auditing WordPress sites

How to read the WordPress Insights section and act on plugin, theme, and WooCommerce findings.

4 min read

1

The WordPress Insights section

When Destiny QA detects a WordPress site, it adds a dedicated section covering the active theme, installed plugins, WooCommerce status, DNS and email configuration, and WordPress-specific security posture. This section only appears for sites running WordPress.

2

Plugin and theme versions

Outdated plugins are the most common entry point for WordPress compromises. The audit lists each detected plugin and theme, its version, and whether it is behind the current release. Prioritise security plugins, form handlers, and e-commerce plugins: these are the highest-risk targets.

3

WooCommerce findings

For WooCommerce stores, the audit checks checkout pages for HTTPS, payment page structure, and missing accessible labels on purchase flows. These matter for both security and accessibility compliance.

4

Email and DNS

The DNS section checks whether SPF, DKIM, and DMARC records are published correctly. Misconfigured email DNS means transactional emails (order confirmations, password resets) are more likely to land in spam or be rejected entirely.

Cookie Consent Preferences

We use cookies to enhance your browsing experience, serve personalized content, and analyze our traffic. By clicking "Accept All", you consent to our use of all cookies. You can manage your preferences or read our Cookie Policy for details.