Cross-Site Request Forgery (CSRF) vulnerability that allows arbitrary votes discovered by Nguy Minh Tuan (Patchstack Alliance) in WordPress Rate my Post – WP Rating System plugin (plugin <= 3.3.4).
Update the WordPress Rate my Post – WP Rating System plugin to the latest available version (at least 3.3.5).