WPDM – Premium Packages

Shahjada

Developer

6.1.0

Latest version

3,000

Installations

Nov 5, 2025

Last updated

WordPress Plugin

Active VDP

Report vulnerability

Vulnerabilities

Security Policy

Security Contributors

Vulnerability history

0 present

9 fixed

3 Mitigation rules

Cross Site Request Forgery (CSRF) Vulnerability
<= 6.0.2
Aug 14, 2025
Cross Site Scripting (XSS) Vulnerability
<= 6.0.6
Jun 5, 2025
SQL Injection vulnerability
<= 5.9.6
Jan 24, 2025
Reflected Cross-Site Scripting via add_query_arg vulnerability
<= 5.9.3
Nov 21, 2024
WordPress Premium Packages - Sell Digital Products Securely plugin <= 5.9.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpdmpp_pay_link Shortcode vulnerability
<= 5.9.3
Nov 20, 2024
SQL Injection vulnerability
<= 6.0.5
Nov 15, 2024
Cross-Site Request Forgery vulnerability
<= 5.9.1
Sep 24, 2024
Cross Site Scripting (XSS) vulnerability
<= 5.8.2
Mar 25, 2024
Arbitrary User Meta Update to Authenticated (Subscriber+) Privilege Escalation vulnerability
<= 5.7.4
Aug 14, 2023