WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Pods – Custom Content Types and Fields

2023-07-18
Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting
Fixed in version 2.8.0
2023-01-20
Pods < 2.9.11 - Pods Deletion via CSRF
Fixed in version 2.9.11
2021-08-06
Pods < 2.7.29 - Multiple Authenticated Stored Cross-Site Scripting (XSS)
Fixed in version 2.7.29
2021-01-15
Pods < 2.7.27 - Authenticated Stored Cross-Site Scripting (XSS)
Fixed in version 2.7.27
2021-01-15
Pods < 2.7.27 - Authenticated Stored Cross-Site Scripting (XSS)
Fixed in version 2.7.27
2015-03-16
Pods 1.4.7 <= 2.5.1.1 - Blind SQL Injection
Fixed in version 2.5.1.2
2015-01-12
Pods <= 2.4.3 - Authenticated XSS & CSRF
Fixed in version 2.5