Smash Balloon Social Post Feed

Plugin

Set alert

Changelog

Claim

VDP

Developer

Syed Balkhi

Latest version

4.3.2

Installations

200,000

Last updated

3 weeks ago

Vulnerability history

0 present

6 patched

Authenticated (Contributor+) Stored CrossSite Scripting via `datacolor` Attribute vulnerability <= 4.3.1

6.5

11 June, 2025

Cross Site Request Forgery (CSRF) vulnerability <= 4.2.1

4.3

10 April, 2024

Contributor+ Stored XSS vulnerability < 4.1.6

6.5

20 December, 2022

Authenticated Reflected CrossSite Scripting (XSS) vulnerability <= 4.1

4.8

16 December, 2021

Stored CrossSite Scripting (XSS) via Arbitrary Setting Update vulnerability <= 4.0

7.3

29 October, 2021

Smash Balloon Social Post Feed

Developer

Latest version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Smash Balloon Social Post Feed

Developer

Latest version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Let us know if we have missed a vulnerability reported elsewhere

reCAPTCHA's verification failed!

Thank you for contributing!