In the case of my pool (
http://www.mxpool.com) we have a good antibruteforce system together with a good anti-injection checking.
So you wouldn't run into issues there.
However, there are pools using common software everywhere, which just put the users in risk.
Not saying problems can't happen, but the chances are relatively small with own software !