Security Issue - Update?

Hi I recently got an email from Envato Market mentioning 

"We are getting in touch to let you know about multiple XSS security vulnerabilities in the Visual Composer WordPress plugin versions prior to 4.7.4 (releases prior to October 2, 2015). This plugin was included in items you've purchased"

I have this plugin with my purchased theme of BeTheme. I have updated my theme, but the plugin is still showing the old version Version 4.3.4

Can you please tell me how I can update the plugin. Why it was not updated when I updated the theme?
Sign In or Register to comment.