Contacted the live support chat with vulnerability:

We want to report a vulnerability discovered in Post and Page Builder by BoldGrid – Visual Drag and Drop Editor WordPress plugin discovered by security researcher Savphill.
The original report is available here: https://patchstack.com/database/report-preview/2df6fa9f-1fe5-432e-b20e-af54b89d0eb0, and the PIN code to access the report information is here: 643ao6wCSU2QmJ2n
Note that we (Patchstack) are a CNA and provide a bug bounty program to security researchers. We do not ask for a reward and simply forward the details to you so it can get patched.
If you have any questions, please let us know. It would be great to get updates on the patching progress.
For general tips on how to patch a vulnerability, take a look here: https://patchstack.com/articles/common-plugin-vulnerabilities-how-to-fix-them/