This update fixes a vulnerability in the way BungeeGuard operates. It is important that you update. After updating, those with affected setups should also rotate the BungeeGuard token, in case malicious users have already obtained the previous token.
The fix only applies to the BungeeCord plugin part of BungeeGuard. It does not affect setups using Velocity proxies with the BungeeGuard Bukkit plugin.
More details can be found here: https://github.com/lucko/BungeeGuard/blob/master/SECURITY.md#002---2nd-june-2025