From 098b14884db49f6091b7044513c1a279eb5d8bb8 Mon Sep 17 00:00:00 2001
From: erwanlr <erwan.lr@gmail.com>
Date: Thu, 29 May 2014 14:46:54 +0200
Subject: [PATCH] Fixes #491 - DZS Video Gallery Content Spoofing & XSS

---
 data/plugin_vulns.xml | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index d68c8534..e7d5f141 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -10637,6 +10637,13 @@
       </references>
       <type>FPD</type>
     </vulnerability>
+    <vulnerability>
+      <title>DZS Video Gallery - Flash Files Content Spoofing &amp; Cross-Site Scripting</title>
+      <references>
+        <url>http://seclists.org/fulldisclosure/2014/May/157</url>
+      </references>
+      <type>MULTI</type>
+    </vulnerability>
   </plugin>
 
   <plugin name="askapache-firefox-adsense">
@@ -12306,7 +12313,7 @@
       <fixed_in>1.0.4</fixed_in>
     </vulnerability>
   </plugin>
-  
+
   <plugin name="wp-business-intelligence-lite">
     <vulnerability>
       <title>WP Business intelligence lite &lt;= 1.0.6 - Remote Code Execution Exploit</title>
@@ -12585,7 +12592,7 @@
       <fixed_in>1.2</fixed_in>
     </vulnerability>
   </plugin>
-  
+
   <plugin name="photo-gallery">
     <vulnerability>
       <title>Photo-Gallery - UploadHandler.php File Upload CSRF</title>