WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Talk to sales
WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Talk to sales
WordPress Plugin Vulnerabilities
Replyable – Subscribe to Comments and Reply by Email
2023-07-18
Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting
No known fix
2023-02-08
Replyable < 2.2.10 - Subscriber+ PHP Object Injection
Fixed in version 2.2.10
2022-02-28
Unauthorised AJAX Calls via Freemius
Fixed in version 2.2.9
2015-09-13
Postmatic <= 1.4.5 - Cross-Site Scripting (XSS)
Fixed in version 1.4.6