I have put the updated qpkg on the roononnas.org website for manual installation. I added a note to it, to install it at your own risk, as it has not yet been approved (or rejected) by QNAP.
I have added checks to verify the session id of the logged in user and added a sanitation step for a function (which is responsible for storing the database location). These were the areas, that have been reported to cause the security issue. I am very sorry for the trouble this might have caused.