From 1722025a2c19de55d89b942c7e0928216b264c8a Mon Sep 17 00:00:00 2001
From: ethicalhack3r <ryandewhurst@gmail.com>
Date: Fri, 26 Jul 2013 14:45:03 +0200
Subject: [PATCH] Added SWFUpload Content Spoofing in 3.5.2 see issue #243

---
 data/wp_vulns.xml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/data/wp_vulns.xml b/data/wp_vulns.xml
index e6c8a3a4..e25f10c6 100644
--- a/data/wp_vulns.xml
+++ b/data/wp_vulns.xml
@@ -3,6 +3,15 @@
 <vulnerabilities xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
                  xsi:noNamespaceSchemaLocation="vuln.xsd">
 
+  <wordpress version="3.5.2">
+    <vulnerability>
+      <title>SWFUpload Content Spoofing</title>
+      <reference>http://bot24.blogspot.ca/2013/04/swfupload-object-injectioncsrf.html</reference>
+      <reference>https://github.com/wpscanteam/wpscan/issues/243</reference>
+      <type>UNKNOWN</type>
+    </vulnerability>
+  </wordpress>
+
   <wordpress version="3.5.1">
     <vulnerability>
       <title>CVE-2013-2173: WordPress 3.4-3.5.1 DoS in class-phpass.php</title>