WordPress Export and Import Users and Customers plugin <= 2.6.2 - Authenticated (Administrator+) Server-Side Request Forgery via validate_file Function vulnerability

Authenticated Administrator+ Server-Side Request Forgery via validatefile Function vulnerability discovered by HayMiz in WordPress Plugin Import Export WordPress Users versions = 2.6.2...

WordPress Rate My Post – WP Rating System plugin <= 4.2.4 - Unauthenticated Voting On Scheduled Posts vulnerability

Unauthenticated Voting On Scheduled Posts vulnerability discovered by HayMiz in WordPress Plugin Rate my Post versions = 4.2.4...