Vulnerability

Your host is referring to this: https://wpvulndb.com/vulnerabilities/8567

hi,

We have used and validated WP_nonce before insert function execute, See on index.php line 77.

The vulnerability gilzow mentioned was fixed in version 1.3.3 of the plugin (with further related security improvements made in 1.3.4 and 1.3.5). Is your web host saying the vulnerability is in the latest version of the plugin?