Added http://seclists.org/fulldisclosure/2012/Nov/51 to wp_vulns.xml

data/wp_vulns.xml

@@ -32,20 +32,20 @@ This file contains vulnerabilities associated with WordPress verions.
   </wordpress>
 
   <wordpress version="3.4-beta4">
-    <vulnerability>		
+    <vulnerability>   
-      <title>Wordpress 3.3.1 Multiple CSRF Vulnerabilities</title>		
+      <title>Wordpress 3.3.1 Multiple CSRF Vulnerabilities</title>    
-      <reference>http://www.exploit-db.com/exploits/18791/</reference>		
+      <reference>http://www.exploit-db.com/exploits/18791/</reference>    
     </vulnerability>
   </wordpress>
 
   <wordpress version="3.3.2">
-    <vulnerability>		
+    <vulnerability>   
-      <title>Wordpress 3.3.1 Multiple CSRF Vulnerabilities</title>		
+      <title>Wordpress 3.3.1 Multiple CSRF Vulnerabilities</title>    
-      <reference>http://www.exploit-db.com/exploits/18791/</reference>		
+      <reference>http://www.exploit-db.com/exploits/18791/</reference>    
   </vulnerability>
-  <vulnerability>		
+  <vulnerability>   
-      <title>WordPress 3.3.2 Cross Site Scripting</title>		
+      <title>WordPress 3.3.2 Cross Site Scripting</title>   
-      <reference>http://packetstormsecurity.org/files/113254</reference>		
+      <reference>http://packetstormsecurity.org/files/113254</reference>    
     </vulnerability>
   </wordpress>
 
@@ -54,9 +54,13 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>Multiple vulnerabilities including XSS and Privilege Escalation</title>
       <reference>http://wordpress.org/news/2012/04/wordpress-3-3-2/</reference>
     </vulnerability>
-    <vulnerability>		
+    <vulnerability>   
-      <title>Wordpress 3.3.1 Multiple CSRF Vulnerabilities</title>		
+      <title>Wordpress 3.3.1 Multiple CSRF Vulnerabilities</title>    
-      <reference>http://www.exploit-db.com/exploits/18791/</reference>		
+      <reference>http://www.exploit-db.com/exploits/18791/</reference>    
+    </vulnerability>
+     <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
     </vulnerability>
   </wordpress>
 
@@ -65,6 +69,31 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>Reflected Cross-Site Scripting in WordPress 3.3</title>
       <reference>http://oldmanlab.blogspot.com/2012/01/wordpress-33-xss-vulnerability.html</reference>
     </vulnerability>
+     <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="3.2.1">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="3.2">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="3.1.4">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="3.1.3">
@@ -72,6 +101,10 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>Multiple SQL Injection Vulnerabilities</title>
       <reference>http://www.exploit-db.com/exploits/17465/</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="3.1.2">
@@ -79,6 +112,10 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>Wordpress &lt;= 3.1.2 Clickjacking Vulnerability</title>
       <reference>http://seclists.org/fulldisclosure/2011/Sep/219</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="3.1.1">
@@ -86,6 +123,38 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>WordPress wp-includes/formatting.php make_clickable() PCRE Library Remote DoS</title>
       <reference>http://osvdb.org/show/osvdb/72142</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="3.1">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="3.0.6">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="3.0.5">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="3.0.4">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="3.0.3">
@@ -97,6 +166,10 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>Wordpress 3.0.3 stored XSS IE7,6 NS8.1</title>
       <reference>http://www.exploit-db.com/exploits/15858/</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="3.0.2">
@@ -104,6 +177,10 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>WordPress XML-RPC Interface Access Restriction Bypass</title>
       <reference>http://osvdb.org/69761</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
    <wordpress version="3.0.1">
@@ -111,6 +188,31 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>WordPress: Information Disclosure via SQL Injection Attack</title>
       <reference>http://blog.sjinks.pro/wordpress/858-information-disclosure-via-sql-injection-attack/</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="3.0">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.9.2">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.9.1">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="2.9">
@@ -122,6 +224,17 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>Wordpress DOS &lt;= 2.9</title>
       <reference>http://www.exploit-db.com/exploits/11441/</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.8.6">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="2.8.5">
@@ -129,6 +242,17 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>WordPress &lt;= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution</title>
       <reference>http://www.exploit-db.com/exploits/10089/</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.8.4">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="2.8.3">
@@ -136,6 +260,10 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>Wordpress &lt;= 2.8.3 Remote Admin Reset Password Vulnerability</title>
       <reference>http://www.exploit-db.com/exploits/9410/</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="2.8.1">
@@ -143,6 +271,17 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>Wordpress 2.8.1 (url) Remote Cross Site Scripting Exploit</title>
       <reference>http://www.exploit-db.com/exploits/9250/</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+   <wordpress version="2.8">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="2.7.1">
@@ -150,6 +289,45 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>WordPress 2.0 - 2.7.1 admin.php Module Configuration Security Bypass Vulnerability</title>
       <reference>http://www.exploit-db.com/exploits/10088/</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.7">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.6.5">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.6.4">
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.6.3">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.6.2">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="2.6.1">
@@ -157,6 +335,31 @@ This file contains vulnerabilities associated with WordPress verions.
       <title>Wordpress 2.6.1 (SQL Column Truncation) Admin Takeover Exploit</title>
       <reference>http://www.exploit-db.com/exploits/6421/</reference>
     </vulnerability>
+    <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.6">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.5.1">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
+  </wordpress>
+
+  <wordpress version="2.5">
+   <vulnerability>   
+      <title>XSS vulnerability in swfupload in WordPress</title>    
+      <reference>http://seclists.org/fulldisclosure/2012/Nov/51</reference>    
+    </vulnerability>
   </wordpress>
 
   <wordpress version="2.3.1">
@@ -237,4 +440,4 @@ This file contains vulnerabilities associated with WordPress verions.
     </vulnerability>
   </wordpress>
 
-</vulnerabilities>
+</vulnerabilities>