Fixes #491 - DZS Video Gallery Content Spoofing & XSS

2014-05-29 14:46:54 +02:00
parent 47d8818028
commit 098b14884d
1 changed files with 9 additions and 2 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -10637,6 +10637,13 @@
      </references>
      <type>FPD</type>
    </vulnerability>
+    <vulnerability>
+      <title>DZS Video Gallery - Flash Files Content Spoofing &amp; Cross-Site Scripting</title>
+      <references>
+        <url>http://seclists.org/fulldisclosure/2014/May/157</url>
+      </references>
+      <type>MULTI</type>
+    </vulnerability>
  </plugin>

  <plugin name="askapache-firefox-adsense">
@@ -12306,7 +12313,7 @@
      <fixed_in>1.0.4</fixed_in>
    </vulnerability>
  </plugin>
-  
+
  <plugin name="wp-business-intelligence-lite">
    <vulnerability>
      <title>WP Business intelligence lite &lt;= 1.0.6 - Remote Code Execution Exploit</title>
@@ -12585,7 +12592,7 @@
      <fixed_in>1.2</fixed_in>
    </vulnerability>
  </plugin>
-  
+
  <plugin name="photo-gallery">
    <vulnerability>
      <title>Photo-Gallery - UploadHandler.php File Upload CSRF</title>