For the second time through our proactive monitoring of changes in WordPress plugins for serious vulnerabilities we have found a vulnerability not just as it is added to a plugin, but as the plugin was introduced into the Plugin Directory.
There is a manual review done of plugins before they are approved for the Plugin Directory and that appears to
Source: Security Feed