diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index fe8d08b6..2165a402 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -33,6 +33,109 @@ ryandewhurst at gmail
 -->
 <vulnerabilities>
 
+  <plugin name="crayon-syntax-highlighter">
+    <vulnerability>
+      <title>Crayon Syntax Highlighter Remote File Inclusion</title>
+      <reference>http://secunia.com/advisories/50804/</reference>
+      <reference>http://ceriksen.com/2012/10/15/wordpress-crayon-syntax-highlighter-remote-file-inclusion-vulnerability/</reference>
+      <type>RFI</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="ungallery">
+    <vulnerability>
+      <title>UnGallery Arbitrary Command Execution</title>
+      <reference>http://secunia.com/advisories/50875/</reference>
+      <reference>http://ceriksen.com/2012/10/23/wordpress-ungallery-remote-command-injection-vulnerability/</reference>
+      <type>RCE</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="thanks-you-counter-button">
+    <vulnerability>
+      <title>Thank You Counter Button XSS</title>
+      <reference>http://secunia.com/advisories/50977/</reference>
+      <type>XSS</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="bookings">
+    <vulnerability>
+      <title>Bookings XSS</title>
+      <reference>http://secunia.com/advisories/50975/</reference>
+      <type>XSS</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="cimy-user-manager">
+    <vulnerability>
+      <title>Cimy User Manager Arbitrary File Disclosure</title>
+      <reference>http://secunia.com/advisories/50834/</reference>
+      <reference>http://ceriksen.com/2012/10/24/wordpress-cimy-user-manager-arbitrary-file-disclosure/</reference>
+      <type>UNKNOWN</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="fs-real-estate-plugin">
+    <vulnerability>
+      <title>FireStorm Professional Real Estate Plugin Multiple SQL Injection</title>
+      <reference>http://secunia.com/advisories/50873/</reference>
+      <reference>http://ceriksen.com/2012/10/25/wordpress-firestorm-professional-real-estate-plugin-sql-injection-vulnerability/</reference>
+      <type>SQLI</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="wp125">
+    <vulnerability>
+      <title>WP125 Multiple XSS</title>
+      <reference>http://secunia.com/advisories/50976/</reference>
+      <type>XSS</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="all-video-gallery">
+    <vulnerability>
+      <title>All Video Gallery </title>
+      <reference>http://secunia.com/advisories/50874/</reference>
+      <reference>http://ceriksen.com/2012/11/04/wordpress-all-video-gallery-plugin-sql-injection/</reference>
+      <type>SQLI</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="buddystream">
+    <vulnerability>
+      <title>BuddyStream XSS</title>
+      <reference>http://secunia.com/advisories/50972/</reference>
+      <type>XSS</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="post-views">
+    <vulnerability>
+      <title>post-views XSS</title>
+      <reference>http://secunia.com/advisories/50982/</reference>
+      <type>XS</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="floating-social-media-links">
+    <vulnerability>
+      <title>Floating Social Media Links Remote File Inclusion</title>
+      <reference>http://secunia.com/advisories/51346/</reference>
+      <reference>http://ceriksen.com/2013/01/12/wordpress-floating-social-media-link-plugins-remote-file-inclusion/</reference>
+      <type>RFI</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="zingiri-forum">
+    <vulnerability>
+      <title>Zingiri Forum Arbitrary File Disclosure</title>
+      <reference>http://secunia.com/advisories/50833/</reference>
+      <reference>http://ceriksen.com/2013/01/12/wordpress-zingiri-forums-arbitrary-file-disclosure/</reference>
+      <type>UNKNOWN</type>
+    </vulnerability>
+  </plugin>
+
   <plugin name="google-document-embedder">
     <vulnerability>
       <title>Google Document Embedder Arbitrary File Disclosure</title>
diff --git a/data/plugins.txt b/data/plugins.txt
index 0d35160c..d9995457 100644
--- a/data/plugins.txt
+++ b/data/plugins.txt
@@ -242,6 +242,7 @@ buddypress-sliding-login-panel/Thumbs.db
 buddypress-toolbar/buddypress-toolbar.php
 buddypress-xprofile-custom-fields-type/bp-xprofile-custom-fields-type.php
 buddypress/readme.txt
+buddystream/readme.txt
 bulk-comment-remove/Bulk_Comment_Removal.php
 bulk-delete/bulk-delete.php
 bulk-watermark/bulk-watermark.php
@@ -300,6 +301,7 @@ child-pages-shortcode/child-pages-shortcode.php
 child-themify/child-themify.php
 cimy-header-image-rotator/README_OFFICIAL.txt
 cimy-user-extra-fields/README_OFFICIAL.txt
+cimy-user-manager/README_OFFICIAL.txt
 ckeditor-for-wordpress/ckeditor.config.js
 clean-options/cleanoptions.php
 cleaner-gallery/admin.css
@@ -1589,6 +1591,7 @@ testimonial-rotator/jquery.cycle.all.js
 testimonials-by-woothemes/readme.txt
 testimonials-widget/readme.txt
 thank-me-later/Message.php
+thanks-you-counter-button/thankyou.js
 the-events-calendar-category-colors/category-colors-settings.php
 the-events-calendar/readme.txt
 the-future-is-now/future-post.php
@@ -1684,6 +1687,7 @@ ultimate-tinymce/__dev_notes.txt
 ultimate-twitter-profile-widget/jscolor.js
 unconfirmed/readme.txt
 underconstruction/ajax-loader.gif
+ungallery/banner.txt
 unique-headers/index.php
 unpointzero-slider/COPYING.txt
 updraftplus/example-decrypt.php