WordPress Dharma Booking plugin versions 2.28.3 and below suffer from local and remote file inclusion vulnerabilities.
82526a805b6d2b7b16345894f9995542ea3661ae96f70e63be274799a3089476
WordPress Brandfolder plugin versions 3.0 and below suffer from local and remote file inclusion vulnerabilities.
5c0396bb5e5d44afc466802c4588ce6dcd5714d10e9025371d7bed1ff1fab90d