Just got a notification from Google regarding the YITH Chat plugin:
We’ve detected the following issue(s) with your security rules:
any user can read your entire database
any user can write to your entire database
Without strong security rules, anyone who has the address of your database can read/write to it, leaving your data vulnerable to attackers stealing, modifying or deleting data as well as creating costly operations.
INSECURE RULES
YITH Live Chat Plugin
Database
yith-live-chat-plugin
I uninstalled this plugin immediately.