Only one to flag?

[polonus]

See: https://www.virustotal.com/pl/url/ade6611b677a6d3a3c22850e2e23cc63824173d03c7b002ef37584d363f2e390/analysis/1494081167/
What Fortinet's flags: http://urlquery.net/report.php?id=1494078892296
Quttera does not detect: https://quttera.com/detailed_report/staging.183training.com
Blacklisted: https://sitecheck.sucuri.net/results/staging.183training.com#blacklist-status
The insecurity is with the WordPress configuration etc.:    contact-form-7 4.6   latest release (4.7) Update required
https://contactform7.com/
Plugins are a source of many security vulnerabilities within WordPress installations, always keep them updated to the latest version available and check the developers plugin page for information about security related updates and fixes.

jQuery library detected: -http://staging.183training.com
Detected libraries:
moment.js - 2.13.0 : (active1) -https://cdnjs.cloudflare.com/ajax/libs/moment.js/2.13.0/moment.min.js
jquery - 1.11.1 : (active1) -http://staging.183training.com/wp-content/themes/am2/js/jquery.min.js
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
(active) - the library was also found to be active by running code
1 vulnerable library detected

B-Status and 3 issues: https://sritest.io/#report/c625ce10-5438-4b09-9f2f-dfdcd910f420

F-Status: https://observatory.mozilla.org/analyze.html?host=staging.183training.com

polonus (volunteer website security analyst and website error-hunter)