WP-GeSHi-Highlight <= 1.4.3 is vulnerable to Author+ ReDoS vulnerability

The WP-GeSHi-Highlight — rock-solid syntax highlighting for 259 languages plugin for WordPress is vulnerable to Regex denial of service in all versions up to, and including, 1.4.3. This is due to the plugin not properly restricting regexes supplied to the wp_geshi_filter_replace_code() function. This makes it possible for authenticated attackers, with Author-level access and above, to cause a denial of service based on a bad regex.