You reckon we’ll see a fix for this, or specific details allowing a user generated patch?
This plugin has served us well.
Hello,
I try to recover the account for the plugin and I will fix it. I lost the login details and couldn’t login. If I will be able to log in, I will fix.
I already fixed the vulnerability. It wasn’t a big issue, but in websites with many user roles, because It wasn’t checked if user has capability ‘manage_options’ it was considered that it is a vulnerability.
As soon as I can access the account used for tis plugin, I will update it and I will request to be reactivated. Also I will fix all reported issues.
I’ve got access and I will commit the fixes soon and I will request a plugin reactivation.
