Unauthenticated Plugin Settings Reset vulnerability discovered by Krzysztof Zając in WordPress XCloner plugin (versions < 4.3.5).
Update the WordPress XCloner Backup, Restore and Migrate plugin to the latest available version (at least 4.3.6).