To report a security vulnerability or plugin exploit, Please create an issue using the Security Flaw template, and mark it with the tag SECURITY FLAW You can expect a quick reply, ~within 1 business day, to your issue.