WPCOM Member

Plugin

Set alert

Changelog

Claim

VDP

Developer

Lomu

Latest version

1.7.7

Installations

2,000

Last updated

2 weeks ago

Vulnerability history

0 present

4 patched

Unauthenticated TimeBased SQL Injection vulnerability <= 1.7.6

9.3

13 March, 2025

Authentication Bypass via 'user_phone' vulnerability <= 1.7.5

9.8

6 March, 2025

Reflected Cross Site Scripting (XSS) vulnerability <= 1.5.4

7.1

30 September, 2024

Unauthenticated Privilege Escalation via User Meta vulnerability <= 1.5.2.1

9.8

6 September, 2024

WPCOM Member

Developer

Latest version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

WPCOM Member

Developer

Latest version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Let us know if we have missed a vulnerability reported elsewhere

reCAPTCHA's verification failed!

Thank you for contributing!