diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index bd1a3328..b0197cc6 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -11301,4 +11301,15 @@
+
+
+ CSRF in WordPress plugin Google Analytics MU 2.3
+
+ http://seclists.org/fulldisclosure/2014/Mar/20
+
+ CSRF
+ 2.4
+
+
+
diff --git a/data/theme_vulns.xml b/data/theme_vulns.xml
index 0782fd48..99f08799 100644
--- a/data/theme_vulns.xml
+++ b/data/theme_vulns.xml
@@ -3010,4 +3010,14 @@
+
+
+ WordPress thecotton Themes Remote File Upload Vulnerability
+
+ http://seclists.org/bugtraq/2014/Mar/9
+
+ UPLOAD
+
+
+