The plugin does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduct SQL Injection attacks.
View the template here CVE-2023-0600.yaml
References:
https://wpscan.com/vulnerability/8f46df4d-cb80-4d66-846f-85faf2ea0ec4