WordPress plugin with 900k installs vulnerable to critical RCE flaw

https://www.bleepingcomputer.com/news/security/wordpress-plugin-with-900k-installs-vulnerable-to-critical-rce-flaw/