Hi
We received a customer report of data breach via our wordpress plug-in fivestar booking system https://en-gb.wordpress.org/plugins/restaurant-reservations/

Next gen was able to read the booking name, email, phone number and booking details and published on google under the following link: https://brouge.co.uk/ngg_tag/brouge-twickenham which sent you to a list of our images and it opened a pop up to print those images automatically.

We have since removed the NextGen galley plug-in and blocked access to the ngg_tag file – awaiting google update of our site index, hopefully those details will disappear.
We found other customer details on the same breach on google. We have image of this to prove the breach.

We sent the image to FiveStarPlugins and their response was to make the bookings private (not available on the free version) and to make the WP page private – which is not possible as data is stored on the plug in. We will follow this up further.

Can you please tell us how these details were published on google via NextGen Gallery however?
Is there a possible breach that needs looking at?

We look forward to your response

The page I need help with: [log in to see the link]