I think this plugin is very dangerous at this state. Plugin will provide feature to spam users to exploit Q2A site as spam mail server. As result (in the worst case), server may freeze. You should stop distribution. And release again after adding defense feature.
1) Limit the number of recipient_addr
2) Limit users to use this feature in the user's level or point