The Logonizer login security plug-in was automatically updated to patch a SQL injection vulnerability. Source