Replies: 0
in line 24 of file simple-personal-message/admin/partials/simple-personal-message-admin-view.php escape with (int)$_GET[‘message’] or intval($_GET[‘message’]). esc_attr not save sqli when parameter is a numeric. If will have questions, send mail for me. lenonleite@gmail.com
