Thanks to the researchers for contributing to our security!

https://securityz.net/w9w/ – Full Path Disclosure in rss-function.php (with sensitive info leak)