CVE-2016-20080

<blockquote> <p>This plugin requires a Brandfolder account which you can setup at <a href="http://brandfolder.com" rel="nofollow ugc">Brandfolder.com</a></p> </blockquote> <p>This plugin provides one block and is only compatible with the Gutenberg editor at this time.</p> <h3>Features of the Brandfolder WordPress plugin</h3> <ul> <li>Edit your Brandfolders directly from your WordPress admin panel.</li> <li>Easily embed your Brandfolder using our Popup Embed on any widget, menu bar, page, or post.</li> <li>The Brandfolder integration allows you to quickly grab assets from your Brandfolders to be used in Pages/Posts.</li> <li>Use the [Brandfolder] shortcode in either widgets, pages, or posts to quickly create a Popup Embed link: <code>[Brandfolder id="mapmyfitness" collection="mapmyrun" query="" text="View our Brandfolder" classes="brandfolder"]</code></li> </ul> <p>Read all about the different embed options on the <a href="https://help.smartsheet.com/115002673674-Wordpress-Integration" rel="nofollow ugc">Brandfolder Knowledge Base</a>.</p> <h3>Support</h3> <ul> <li> <p>Visit https://help.smartsheet.com/brandfolder for support &amp; documentation.</p> </li> <li> <p>We also recommend the <a href="http://en.support.wordpress.com/" rel="nofollow ugc">WordPress Support</a> for extended help.</p> </li> </ul> <h3>External services</h3> <p>This plugin connects to external Brandfolder services to provide digital asset management functionality. The plugin communicates with the following external services:</p> <p><strong>Brandfolder CDN and API Services</strong><br /> * <strong>Service</strong>: Brandfolder&#8217;s content delivery network and API services<br /> * <strong>Purpose</strong>: To load the Brandfolder JavaScript library, display assets, and enable asset selection functionality<br /> * <strong>Data sent</strong>: When users interact with Brandfolder embeds or select assets, the plugin may send:<br /> &#8211; Brandfolder account identifiers<br /> &#8211; Collection and asset query parameters<br /> &#8211; User interaction data for asset selection<br /> * <strong>When data is sent</strong>: Data is transmitted when:<br /> &#8211; The Brandfolder embed is loaded on a page<br /> &#8211; Users click on Brandfolder links or buttons<br /> &#8211; Assets are selected or embedded from Brandfolder<br /> * <strong>External domains used</strong>:<br /> &#8211; <code>cdn.brandfolder.com</code> &#8211; For loading the Brandfolder JavaScript library<br /> &#8211; <code>integration-panel-ui.brandfolder-svc.com</code> &#8211; For the asset selection interface<br /> &#8211; <code>brandfolder.com</code> &#8211; For direct links to Brandfolder collections</p> <p><strong>Legal Information</strong>:<br /> * Brandfolder Terms of Service: https://brandfolder.com/terms-of-service<br /> * Brandfolder Privacy Policy: https://brandfolder.com/privacy-policy</p> <p>By using this plugin, you acknowledge that your website will connect to these external Brandfolder services. Please ensure this complies with your website&#8217;s privacy policy and terms of service.</p>