We have noticed that The plugin has a vulnerability that allows authenticated users with subscriber (and higher) permissions to perform unspecified unauthorized actions (Affected Version <= 1.8.25), so we have to deactivate the plugin immediately. Could you please help fix this?