Update vuln db
This commit is contained in:
Peter
@@ -10656,11 +10656,48 @@
|
|||||||
<type>FPD</type>
|
<type>FPD</type>
|
||||||
</vulnerability>
|
</vulnerability>
|
||||||
<vulnerability>
|
<vulnerability>
|
||||||
<title>DZS Video Gallery - Flash Files Content Spoofing & Cross-Site Scripting</title>
|
<title>DZS Video Gallery - preview_allchars.swf logoLink Parameter Reflected XSS</title>
|
||||||
<references>
|
<references>
|
||||||
|
<osvdb>107521</osvdb>
|
||||||
|
<cve>2014-3923</cve>
|
||||||
|
<url>http://packetstormsecurity.com/files/126846/</url>
|
||||||
|
<url>http://www.securityfocus.com/bid/67698</url>
|
||||||
<url>http://seclists.org/fulldisclosure/2014/May/157</url>
|
<url>http://seclists.org/fulldisclosure/2014/May/157</url>
|
||||||
</references>
|
</references>
|
||||||
<type>MULTI</type>
|
<type>XSS</type>
|
||||||
|
</vulnerability>
|
||||||
|
<vulnerability>
|
||||||
|
<title>DZS Video Gallery - deploy/preview_skin_overlay.swf logoLink Parameter Reflected XSS</title>
|
||||||
|
<references>
|
||||||
|
<osvdb>107522</osvdb>
|
||||||
|
<cve>2014-3923</cve>
|
||||||
|
<url>http://packetstormsecurity.com/files/126846/</url>
|
||||||
|
<url>http://www.securityfocus.com/bid/67698</url>
|
||||||
|
<url>http://seclists.org/fulldisclosure/2014/May/157</url>
|
||||||
|
</references>
|
||||||
|
<type>XSS</type>
|
||||||
|
</vulnerability>
|
||||||
|
<vulnerability>
|
||||||
|
<title>DZS Video Gallery - deploy/preview.swf logoLink Parameter Reflected XSS</title>
|
||||||
|
<references>
|
||||||
|
<osvdb>107523</osvdb>
|
||||||
|
<cve>2014-3923</cve>
|
||||||
|
<url>http://packetstormsecurity.com/files/126846/</url>
|
||||||
|
<url>http://www.securityfocus.com/bid/67698</url>
|
||||||
|
<url>http://seclists.org/fulldisclosure/2014/May/157</url>
|
||||||
|
</references>
|
||||||
|
<type>XSS</type>
|
||||||
|
</vulnerability>
|
||||||
|
<vulnerability>
|
||||||
|
<title>DZS Video Gallery - preview_skin_rouge.swf logoLink Parameter Reflected XSS</title>
|
||||||
|
<references>
|
||||||
|
<osvdb>107524</osvdb>
|
||||||
|
<cve>2014-3923</cve>
|
||||||
|
<url>http://packetstormsecurity.com/files/126846/</url>
|
||||||
|
<url>http://www.securityfocus.com/bid/67698</url>
|
||||||
|
<url>http://seclists.org/fulldisclosure/2014/May/157</url>
|
||||||
|
</references>
|
||||||
|
<type>XSS</type>
|
||||||
</vulnerability>
|
</vulnerability>
|
||||||
</plugin>
|
</plugin>
|
||||||
|
|
||||||
@@ -12078,6 +12115,14 @@
|
|||||||
</plugin>
|
</plugin>
|
||||||
|
|
||||||
<plugin name="blogvault-real-time-backup">
|
<plugin name="blogvault-real-time-backup">
|
||||||
|
<vulnerability>
|
||||||
|
<title>blogVault 1.08 - Missing Account Empty Secret Key Generation</title>
|
||||||
|
<references>
|
||||||
|
<osvdb>107570</osvdb>
|
||||||
|
</references>
|
||||||
|
<type>BYPASS</type>
|
||||||
|
<fixed_in>1.09</fixed_in>
|
||||||
|
</vulnerability>
|
||||||
<vulnerability>
|
<vulnerability>
|
||||||
<title>blogVault 1.05 - admin.php blogVault Key Setting CSRF</title>
|
<title>blogVault 1.05 - admin.php blogVault Key Setting CSRF</title>
|
||||||
<references>
|
<references>
|
||||||
|
|||||||
Reference in New Issue
Block a user