Site security compromised by a plugin

Hello,

Here is a message from my security firewall:

Alert generated at Thursday 7th of September 2023 at 02:30:56 AM


See the details of these scan results on your site at: https://www.XXX.com/wp-admin/admin.php?page=WordfenceScan

Critical Problems:

* The Plugin "Ovic: Product Bundle" has a security vulnerability.


Vulnerability Severity: 5.3/10.0 (Medium) Vulnerability Information
https://wordpress.org/plugins/ovic-product-bundle/#developers

NOTE: You are using the free version of Wordfence. Upgrade today:

Receive real-time Firewall and Scan engine rule updates for protection as threats emerge
Real-time IP Blocklist blocks the most malicious IPs from accessing your site
Country blocking
IP reputation monitoring
Schedule scans to run more frequently and at optimal times
Access to Premium Support
Discounts for multi-year and multi-license purchases
Click here to upgrade to Wordfence Premium:
https://www.wordfence.com/zz2/wordfence-signup/

No longer an administrator for this site? Click here to stop receiving security alerts.