From 17d12b41dbce76354bb541c4621ebd65dd62800e Mon Sep 17 00:00:00 2001
From: Peter <vanderlaan.pm@gmail.com>
Date: Mon, 30 Dec 2013 17:38:46 +0100
Subject: [PATCH] Update plugin_vulns.xml

---
 data/plugin_vulns.xml | 50 +++++++++++++++++++++++++++++++++----------
 1 file changed, 39 insertions(+), 11 deletions(-)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 46e17d25..959a07aa 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -5664,22 +5664,46 @@
   </plugin>
 
   <plugin name="spider-calendar">
-    <vulnerability>
-      <title>Spider Calendar - "many_sp_calendar" Cross-Site Scripting Vulnerability</title>
-      <references>
-        <secunia>50981</secunia>
-      </references>
-      <type>XSS</type>
-    </vulnerability>
     <vulnerability>
       <title>Spider Calendar 1.3.0 - Multiple Vulnerabilities</title>
       <references>
-        <exploitdb>25723</exploitdb>
         <osvdb>93584</osvdb>
+        <exploitdb>25723</exploitdb>
         <secunia>53481</secunia>
       </references>
       <type>MULTI</type>
     </vulnerability>
+    <vulnerability>
+      <title>Spider Calendar 1.1.0 - "many_sp_calendar" Cross-Site Scripting Vulnerability</title>
+      <references>
+        <osvdb>86604</osvdb>
+        <secunia>50981</secunia>
+      </references>
+      <type>XSS</type>
+      <fixed_in>1.1.1</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>Spider Calendar 1.0.1 - front_end/spidercalendarbig.php date Parameter XSS</title>
+      <references>
+        <osvdb>85897</osvdb>
+        <secunia>50812</secunia>
+        <exploitdb>21715</exploitdb>
+        <url>http://packetstormsecurity.org/files/117078/</url>
+      </references>
+      <type>XSS</type>
+      <fixed_in>1.1.3</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>Spider Calendar 1.0.1 - spidercalendarbig_seemore.php calendar_id Parameter SQL Injection</title>
+      <references>
+        <osvdb>85898</osvdb>
+        <secunia>50812</secunia>
+        <exploitdb>21715</exploitdb>
+        <url>http://packetstormsecurity.org/files/117078/</url>
+      </references>
+      <type>SQLI</type>
+      <fixed_in>1.1.3</fixed_in>
+    </vulnerability>
   </plugin>
 
   <plugin name="dynamic-font-replacement-4wp">
@@ -5749,8 +5773,9 @@
 
   <plugin name="css-plus">
     <vulnerability>
-      <title>CSS Plus - Unspecified Vulnerabilities</title>
+      <title>CSS Plus 1.3.1 - Unspecified Vulnerabilities</title>
       <references>
+        <osvdb>85875</osvdb>
         <secunia>50793</secunia>
       </references>
       <type>UNKNOWN</type>
@@ -5760,8 +5785,9 @@
 
   <plugin name="multisite-plugin-manager">
     <vulnerability>
-      <title>Multisite plugin Manager - Two Cross-Site Scripting Vulnerabilities</title>
+      <title>Multisite plugin Manager 3.1.1 - Two Cross-Site Scripting Vulnerabilities</title>
       <references>
+        <osvdb>85818</osvdb>
         <secunia>50762</secunia>
       </references>
       <type>XSS</type>
@@ -5773,6 +5799,7 @@
     <vulnerability>
       <title>ABC Test - "id" Cross-Site Scripting Vulnerability</title>
       <references>
+        <osvdb>85773</osvdb>
         <secunia>50608</secunia>
       </references>
       <type>XSS</type>
@@ -5781,8 +5808,9 @@
 
   <plugin name="token-manager">
     <vulnerability>
-      <title>Token Manager - "tid" Cross-Site Scripting Vulnerabilities</title>
+      <title>Token Manager 1.0.2 - "tid" Cross-Site Scripting Vulnerabilities</title>
       <references>
+        <osvdb>85738</osvdb>
         <secunia>50722</secunia>
       </references>
       <type>XSS</type>