We want to report a vulnerability discovered in Related Post WordPress plugin discovered by security researcher Abu Hurayra.
The original report is available here: https://patchstack.com/database/report-preview/52d011de-4f66-41e7-a838-c197d16ffa4a, and the PIN code to access the report information is here: QmwHydV7AbImCcZ4
Note that we (Patchstack) are a CNA and provide a bug bounty program to security researchers. We do not ask for a reward and simply forward the details to you so it can get patched.
If you have any questions, please let us know. It would be great to get updates on the patching progress.
For general tips on how to patch a vulnerability, take a look here: https://patchstack.com/articles/common-plugin-vulnerabilities-how-to-fix-them/
Thank you. Have a nice day.
Thank you so much for posting this issue. We've resolved this major issue on our latest version.