Our add-ons are usually very well developed. That's because we work with all the modern technologies that help protect the web application, like Prepared Statements when user parameters are included in a database query, user parameters are escaped before output to the page to prevent XSS code injections. For both the frontend and the backend, we attach the highest importance to security standards. Our developers are of the old school and have dealt extensively with assembler and the topic security, memory overflows, exploits etc. in the past. However, you can never completely exclude security breaches. In case you notice a security breach contact us immediately the contact form and please do not post anything publicly in a support ticket to prevent abuse of a potential security breach.