Website flagged in the category PHISH and deceptive website....

See: -https://aw-snap.info/file-viewer/?tgt=http%3A%2F%2Fthewcollection.co.uk%2Fwp-includes%2Fcertificates%2Fii.php%3Frand%3D13inboxlightaspxn.1774256418&ref_sel=GSP2&ua_sel=ff&fs=1

as Google Safe Browsing has it flagged.

A sure PHISH allright: http://urlquery.net/report.php?id=1483651602669

Outdated CMS: WordPress Version
4.3.6
Version does not appear to be latest 4.7 - update now.

Warning Directory Indexing Enabled
In the test we attempted to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is an information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.

-http://thewcollection.co.uk
Detected libraries:
jquery-migrate - 1.2.1 : -http://thewcollection.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.11.3 : (active1) -http://thewcollection.co.uk/wp-includes/js/jquery/jquery.js?ver=1.11.3
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
(active) - the library was also found to be active by running code
2 vulnerable libraries detected

F-F-B- F-X status: https://observatory.mozilla.org/analyze.html?host=thewcollection.co.uk

polonus (volunteer website security analyst and website error-hunter)

P.S.
Recently on that CMS: https://blog.sucuri.net/2017/01/hacked-website-report-2016q3.html