Thanks for this write-up and the fork. I haven’t yet decided how to proceed, as I agree with @abigailm that from a security perspective it would be great if it was uploaded to wordpress.org. Even if this issue uncovers that wordpress.org should have better security audit of it’s plugins.
Same here after upgrading from WP 4.7 to 4.8. After I took a backup of the files I deleted them on one of my sites, and I couldn’t notice the difference, but it might not be the right way to go.
Having the same issue. Might be that the plugin is discontinued from dev’s side, haven’t seen an update in a long time.
