Hi @nikhilranpara-1 ,
We have informed our developers about that, and we will inform you as soon as we get some feedback.
You may let us know if you have more questions in the meantime.
Thanks!
@nikhilranpara-1 – Yes, that is quite old, though at first glance the versions looked similar, it was in v1.8.12, we are on v1.18.2, lots of releases since then.
Here is the changelog in question, patched and released days prior to that publication: https://github.com/PopupMaker/Popup-Maker/blob/master/CHANGELOG.md#v1813—10112019
https://github.com/PopupMaker/Popup-Maker/commit/974f6f395d052db4b493d616130b4538f9ffcdfd
You will still get a curl response from those requests, but it will be the WP permission denied or login screens. They all require a valid nonce after that patch.
Hope that helps. Let us know if there is something we are missing.