Information from i-plug inc.

The fix for this vulnerability was implemented in version 3.0.0 and this version is no longer available as of April 9, 2024.
At this time, this vulnerability does not affect our customers and does not require any action on their part.
Furthermore, no instances of this vulnerability being exploited have been reported so far.