Added OSVDB #99195

2013-10-31 10:44:06 +01:00
parent 81e3ff6dc0
commit 1ac72096af
1 changed files with 16 additions and 8 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -1353,9 +1353,7 @@

  <plugin name="auctionplugin">
    <vulnerability>
-      <title>Auctions 2.0.1.3 - Arbitrary
-        File Upload Vulnerability
-      </title>
+      <title>Auctions 2.0.1.3 - Arbitrary File Upload Vulnerability</title>
      <references>
        <url>http://packetstormsecurity.com/files/113568/</url>
      </references>
@@ -5193,8 +5191,7 @@

  <plugin name="xve-various-embed">
    <vulnerability>
-      <title>XVE Various Embed - JW Player Multiple Cross-Site Scripting Vulnerabilities
-      </title>
+      <title>XVE Various Embed - JW Player Multiple Cross-Site Scripting Vulnerabilities</title>
      <references>
        <secunia>50173</secunia>
      </references>
@@ -6695,8 +6692,7 @@

  <plugin name="buddypress-extended-friendship-request">
    <vulnerability>
-      <title>BuddyPress Extended Friendship Request - wp-admin/admin-ajax.php friendship_request_message Parameter XSS
-      </title>
+      <title>BuddyPress Extended Friendship Request - wp-admin/admin-ajax.php friendship_request_message Parameter XSS</title>
      <references>
        <osvdb>94807</osvdb>
      </references>
@@ -7784,4 +7780,16 @@
    </vulnerability>
  </plugin>

+  <plugin name="rockhoist-ratings">
+    <vulnerability>
+      <title>Rockhoist Ratings 1.2.2 - wp-admin/admin-ajax.php postID Parameter SQL Injection</title>
+      <references>
+        <osvdb>99195</osvdb>
+        <secunia>55445</secunia>
+        <url>http://www.securityfocus.com/bid/63441</url>
+      </references>
+      <type>SQLI</type>
+    </vulnerability>
+  </plugin>
+
 </vulnerabilities>