From 09de2eb1946b2acb6b7284577d45aba90475b903 Mon Sep 17 00:00:00 2001
From: Peter <vanderlaan.pm@gmail.com>
Date: Tue, 15 Apr 2014 22:53:24 +0200
Subject: [PATCH] Update vuln db

---
 data/plugin_vulns.xml | 23 ++++++++++++++++++++---
 data/theme_vulns.xml  | 21 ++++++++++++++++++++-
 2 files changed, 40 insertions(+), 4 deletions(-)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index e20ad2d3..ac26f0bc 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -3120,6 +3120,7 @@
       <references>
         <osvdb>103308</osvdb>
         <cve>2014-1889</cve>
+        <secunia>56950</secunia>
         <exploitdb>31571</exploitdb>
         <url>http://packetstormsecurity.com/files/125213/</url>
       </references>
@@ -3131,6 +3132,7 @@
       <references>
         <osvdb>103307</osvdb>
         <cve>2014-1888</cve>
+        <secunia>56950</secunia>
         <url>http://packetstormsecurity.com/files/125212/</url>
       </references>
       <type>XSS</type>
@@ -11503,6 +11505,7 @@
       <title>all_in_one_carousel 1.2.20 - /tpl/add_carousel.php id Parameter Reflected XSS</title>
       <references>
         <osvdb>103351</osvdb>
+        <secunia>56962</secunia>
         <url>http://seclists.org/bugtraq/2014/Feb/38</url>
       </references>
       <type>XSS</type>
@@ -11738,6 +11741,7 @@
       <references>
         <cve>2014-2340</cve>
         <osvdb>104402</osvdb>
+        <secunia>57362</secunia>
         <exploitdb>32701</exploitdb>
         <url>http://packetstormsecurity.com/files/125991/</url>
         <url>https://www.htbridge.com/advisory/HTB23206</url>
@@ -12257,12 +12261,25 @@
 
   <plugin name="twitget">
     <vulnerability>
-      <title>Twitget 3.3.1 - CSRF/XSS vulnerability</title>
+      <title>Twitget 3.3.1 - twitget.php Twitter Setting Manipulation CSRF</title>
       <references>
-        <url>https://security.dxw.com/advisories/csrfxss-vulnerability-in-twitget-3-3-1/</url>
+        <osvdb>105705</osvdb>
         <cve>2014-2559</cve>
+        <exploitdb>32868</exploitdb>
+        <url>https://security.dxw.com/advisories/csrfxss-vulnerability-in-twitget-3-3-1/</url>
       </references>
-      <type>MULTI</type>
+      <type>CSRF</type>
+      <fixed_in>3.3.3</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>Twitget 3.3.1 - twitget.php twitget_consumer_key Parameter Stored XSS</title>
+      <references>
+        <osvdb>105704</osvdb>
+        <cve>2014-2559</cve>
+        <exploitdb>32868</exploitdb>
+        <url>https://security.dxw.com/advisories/csrfxss-vulnerability-in-twitget-3-3-1/</url>
+      </references>
+      <type>XSS</type>
       <fixed_in>3.3.3</fixed_in>
     </vulnerability>
   </plugin>
diff --git a/data/theme_vulns.xml b/data/theme_vulns.xml
index ab73936d..f426a3d0 100644
--- a/data/theme_vulns.xml
+++ b/data/theme_vulns.xml
@@ -1845,12 +1845,20 @@
 
   <theme name="archin">
     <vulnerability>
-      <title>Archin - Cross-Site Scripting and Arbitrary File Upload Vulnerabilities</title>
+      <title>Archin 3.2 - Cross-Site Scripting and Arbitrary File Upload Vulnerabilities</title>
       <references>
         <secunia>50711</secunia>
       </references>
       <type>MULTI</type>
     </vulnerability>
+    <vulnerability>
+      <title>Archin 3.2 - hades_framework/option_panel/ajax.php Configuration Option Manipulation</title>
+      <references>
+        <osvdb>86991</osvdb>
+        <exploitdb>21646</exploitdb>
+      </references>
+      <type>RCE</type>
+    </vulnerability>
   </theme>
 
   <theme name="purity">
@@ -3508,4 +3516,15 @@
     </vulnerability>
   </theme>
 
+  <theme name="linenity">
+    <vulnerability>
+      <title>LineNity 1.20 - download.php imgurl Parameter Remote Path Traversal File Access</title>
+      <references>
+        <osvdb>105767</osvdb>
+        <exploitdb>32861</exploitdb>
+      </references>
+      <type>LFI</type>
+    </vulnerability>
+  </theme>
+
 </vulnerabilities>