Missing Authorization to Auth. Settings Update vulnerability discovered by Marco Wotschka in the WordPress Blog2Social plugin (versions <= 6.9.11).
Update the WordPress Blog2Social plugin to the latest available version (at least 6.9.12).