From aa4a636cce87ee32fdba7b451191715c1063432e Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Thu, 10 Oct 2013 10:13:43 +0200
Subject: [PATCH 1/7] Update wp_vulns.xml

---
 data/wp_vulns.xml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/data/wp_vulns.xml b/data/wp_vulns.xml
index ddb44cc2..361e81c6 100644
--- a/data/wp_vulns.xml
+++ b/data/wp_vulns.xml
@@ -2090,7 +2090,16 @@
     <vulnerability>
       <title>Wordpress &lt;= 1.5.1.2 xmlrpc Interface SQL Injection Exploit</title>
       <references>
+        <osvdb>17636</osvdb>
+        <osvdb>17637</osvdb>
+        <osvdb>17638</osvdb>
+        <osvdb>17639</osvdb>
+        <osvdb>17640</osvdb>
+        <osvdb>17641</osvdb>
+        <cve>2005-2108</cve>
         <exploitdb>1077</exploitdb>
+        <secunia>15831</secunia>
+        <secunia>15898</secunia>
       </references>
       <type>SQLI</type>
     </vulnerability>

From 2c9445485857251b492c8b51f8326d2bc5b2e773 Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Thu, 10 Oct 2013 10:50:14 +0200
Subject: [PATCH 2/7] Update wp_vulns.xml

---
 data/wp_vulns.xml | 38 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)

diff --git a/data/wp_vulns.xml b/data/wp_vulns.xml
index 361e81c6..a6c5446a 100644
--- a/data/wp_vulns.xml
+++ b/data/wp_vulns.xml
@@ -2167,4 +2167,42 @@
     </vulnerability>
   </wordpress>
 
+  <wordpress version="1.5">
+    <vulnerability>
+      <title>WordPress wp-trackback.php tb_id Parameter SQL Injection</title>
+      <references>
+        <cve>2005-1687</cve>
+        <osvdb>16701</osvdb>
+        <osvdb>16702</osvdb>
+        <osvdb>16703</osvdb>
+        <url></url>
+      </references>
+      <type>SQLI</type>
+      <fixed_in>1.5.1</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>WordPress post.php p Parameter XSS</title>
+      <references>
+        <osvdb>16702</osvdb>
+        <osvdb>16701</osvdb>
+        <osvdb>16703</osvdb>
+        <url></url>
+      </references>
+      <type>XSS</type>
+      <fixed_in>1.5.1</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>WordPress Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <cve>2005-1688</cve>
+        <osvdb>16703</osvdb>
+        <osvdb>16701</osvdb>
+        <osvdb>16702</osvdb>
+        <url></url>
+      </references>
+      <type>UNKNOWN</type>
+      <fixed_in>1.5.1</fixed_in>
+    </vulnerability>
+  </wordpress>
+
 </vulnerabilities>

From fc2a66ab51353e129f63311817d33755580dd4b9 Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Thu, 10 Oct 2013 11:03:22 +0200
Subject: [PATCH 3/7] Update wp_vulns.xml

---
 data/wp_vulns.xml | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/data/wp_vulns.xml b/data/wp_vulns.xml
index a6c5446a..c7a74786 100644
--- a/data/wp_vulns.xml
+++ b/data/wp_vulns.xml
@@ -16,6 +16,7 @@
         <osvdb>97211</osvdb>
       </references>
       <type>UNKNOWN</type>
+      <fixed_in>3.6.1</fixed_in>
     </vulnerability>
     <vulnerability>
       <title>wp-includes/functions.php get_allowed_mime_types Function SWF / EXE File Upload XSS Weakness</title>
@@ -35,6 +36,7 @@
         <url>http://core.trac.wordpress.org/changeset/25323</url>
       </references>
       <type>UNKNOWN</type>
+      <fixed_in>3.6.1</fixed_in>
     </vulnerability>
     <vulnerability>
       <title>wp-admin/includes/post.php user_ID Parameter Manipulation Post Authorship Spoofing</title>
@@ -45,6 +47,7 @@
         <url>http://core.trac.wordpress.org/changeset/25321</url>
       </references>
       <type>UNKNOWN</type>
+      <fixed_in>3.6.1</fixed_in>
     </vulnerability>
     <vulnerability>
       <title>wp-includes/functions.php get_allowed_mime_types Function HTML File Upload XSS Weakness</title>
@@ -2102,6 +2105,7 @@
         <secunia>15898</secunia>
       </references>
       <type>SQLI</type>
+      <fixed_in>1.5.1.3</fixed_in>
     </vulnerability>
     <vulnerability>
       <title>XMLRPC Pingback API Internal/External Port Scanning</title>
@@ -2175,7 +2179,6 @@
         <osvdb>16701</osvdb>
         <osvdb>16702</osvdb>
         <osvdb>16703</osvdb>
-        <url></url>
       </references>
       <type>SQLI</type>
       <fixed_in>1.5.1</fixed_in>
@@ -2186,7 +2189,6 @@
         <osvdb>16702</osvdb>
         <osvdb>16701</osvdb>
         <osvdb>16703</osvdb>
-        <url></url>
       </references>
       <type>XSS</type>
       <fixed_in>1.5.1</fixed_in>
@@ -2198,7 +2200,6 @@
         <osvdb>16703</osvdb>
         <osvdb>16701</osvdb>
         <osvdb>16702</osvdb>
-        <url></url>
       </references>
       <type>UNKNOWN</type>
       <fixed_in>1.5.1</fixed_in>

From 4b8115978e1434dcba3808cf913023e20eb66571 Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Thu, 10 Oct 2013 15:24:48 +0200
Subject: [PATCH 4/7] Added Kali Linux on the list of pre-installed Linux
 distributions

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index a14ff925..82be28e9 100644
--- a/README.md
+++ b/README.md
@@ -29,6 +29,7 @@ WPScan comes pre-installed on the following Linux distributions:
 - [BackBox Linux](http://www.backbox.org/)
 - [BackTrack Linux](http://www.backtrack-linux.org/)
 - [Pentoo](http://www.pentoo.ch/)
+- [Kali Linux](http://www.kali.org/)
 - [SamuraiWTF](http://samurai.inguardians.com/)
 
 Prerequisites:

From f03ca005c3cdbbb3a53921c1fc7e241f16505817 Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Thu, 10 Oct 2013 17:51:02 +0200
Subject: [PATCH 5/7] Update wp_vulns.xml

---
 data/wp_vulns.xml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/data/wp_vulns.xml b/data/wp_vulns.xml
index c7a74786..32eed501 100644
--- a/data/wp_vulns.xml
+++ b/data/wp_vulns.xml
@@ -2204,6 +2204,23 @@
       <type>UNKNOWN</type>
       <fixed_in>1.5.1</fixed_in>
     </vulnerability>
+    <vulnerability>
+      <title>WordPress Cross-Site Scripting and SQL Injection Vulnerabilities</title>
+      <references>
+        <osvdb>16478</osvdb>
+        <secunia>15324</secunia>
+      </references>
+      <type>MULTI</type>
+      <fixed_in>1.5.1</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>WordPress template-functions-post.php Multiple Field XSS</title>
+      <references>
+        <cve>2005-1102</cve>
+        <osvdb>15643</osvdb>
+      </references>
+      <type>XSS</type>
+    </vulnerability>
   </wordpress>
 
 </vulnerabilities>

From 19dd9d26b470378de3d8fcdf129b804b63b75804 Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Thu, 10 Oct 2013 18:26:50 +0200
Subject: [PATCH 6/7] Update README.md

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 82be28e9..f417daca 100644
--- a/README.md
+++ b/README.md
@@ -28,8 +28,8 @@ WPScan comes pre-installed on the following Linux distributions:
 
 - [BackBox Linux](http://www.backbox.org/)
 - [BackTrack Linux](http://www.backtrack-linux.org/)
-- [Pentoo](http://www.pentoo.ch/)
 - [Kali Linux](http://www.kali.org/)
+- [Pentoo](http://www.pentoo.ch/)
 - [SamuraiWTF](http://samurai.inguardians.com/)
 
 Prerequisites:

From 73198fdcecc08ee490a293f5add802f31f68a529 Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Thu, 10 Oct 2013 20:39:20 +0200
Subject: [PATCH 7/7] Update plugin_vulns.xml

---
 data/plugin_vulns.xml | 19 ++++++++++++++-----
 1 file changed, 14 insertions(+), 5 deletions(-)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 7f287eb3..1c5fcdbf 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -275,12 +275,15 @@
 
   <plugin name="google-document-embedder">
     <vulnerability>
-      <title>Google Document Embedder Arbitrary File Disclosure</title>
+      <title>Google Document Embedder - Arbitrary File Disclosure</title>
       <references>
+        <cve>2012-4915</cve>
         <exploitdb>23970</exploitdb>
+        <secunia>50832</secunia>
+        <url>http://www.securityfocus.com/bid/57133</url>
+        <url>http://packetstormsecurity.com/files/119329/</url>
         <url>http://ceriksen.com/2013/01/03/wordpress-google-document-embedder-arbitrary-file-disclosure/
         </url>
-        <secunia>50832</secunia>
         <metasploit>exploit/unix/webapp/wp_google_document_embedder_exec</metasploit>
       </references>
       <type>UNKNOWN</type>
@@ -448,17 +451,23 @@
 
   <plugin name="reflex-gallery">
     <vulnerability>
-      <title>ReFlex Gallery Shell Upload</title>
+      <title>ReFlex Gallery 1.3 - Shell Upload</title>
       <references>
         <url>http://packetstormsecurity.com/files/119218/</url>
       </references>
       <type>UPLOAD</type>
     </vulnerability>
+    <vulnerability>
+      <title>ReFlex Gallery 1.4 - reflex-gallery.php Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>88869</osvdb>
+      </references>
+    </vulnerability>
   </plugin>
 
   <plugin name="uploader">
     <vulnerability>
-      <title>Uploader 1.0.4 Shell Upload</title>
+      <title>Uploader 1.0.4 - Shell Upload</title>
       <references>
         <url>http://packetstormsecurity.com/files/119219/</url>
       </references>
@@ -468,7 +477,7 @@
 
   <plugin name="xerte-online">
     <vulnerability>
-      <title>Xerte Online 0.32 Shell Upload</title>
+      <title>Xerte Online 0.32 - Shell Upload</title>
       <references>
         <url>http://packetstormsecurity.com/files/119220/</url>
       </references>