EPSS
Percentile
86.0%
This plugin is prone to a remote file upload vulnerability, because any user can upload .jpg files to the WordPress installation.
Update the plugin.
packetstormsecurity.com/files/137598/