An exploit has been discovered. I have been running this version of the plugin and have been hacked twice in as many weeks. I have gone through my logs and found the source of the exploit is via the marker_listings.xml
After a quick search on Google, I found this.
Hope thats of some help in getting this hole plugged up.