Merge pull request #279 from adegol/master

Added 3 vulnerable plugins

data/plugin_vulns.xml

@@ -6417,4 +6417,71 @@
     </vulnerability>
   </plugin>
 
+  <plugin name="hms-testimonials">
+    <vulnerability>
+      <title>CSRF in HMS Testimonials 2.0.10</title>
+      <references>
+        <url>http://wordpress.org/plugins/hms-testimonials/changelog/</url>
+        <cve>2013-4240</cve>
+        <osvdb>96107</osvdb>
+        <osvdb>96108</osvdb>
+        <osvdb>96109</osvdb>
+        <osvdb>96110</osvdb>
+        <osvdb>96111</osvdb>
+        <secunia>54402</secunia>
+      </references>
+      <fixed_in>2.0.11</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>XSS in HMS Testimonials 2.0.10</title>
+      <references>
+        <url>http://wordpress.org/plugins/hms-testimonials/changelog/</url>
+        <cve>2013-4241</cve>
+        <osvdb>96107</osvdb>
+        <osvdb>96108</osvdb>
+        <osvdb>96109</osvdb>
+        <osvdb>96110</osvdb>
+        <osvdb>96111</osvdb>
+        <secunia>54402</secunia>
+      </references>
+      <fixed_in>2.0.11</fixed_in>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="indianic-testimonial">
+    <vulnerability>
+      <title>CSRF vulnerability in IndiaNIC Testimonial 2.2</title>
+      <references>
+        <url>http://seclists.org/fulldisclosure/2013/Sep/5</url>
+        <cve>2013-5672</cve>
+        <exploitdb>28054</exploitdb>
+      </references>
+    </vulnerability>
+    <vulnerability>
+      <title>SQL Injection vulnerability in IndiaNIC Testimonial 2.2</title>
+      <references>
+        <url>http://seclists.org/fulldisclosure/2013/Sep/5</url>
+        <cve>2013-5673</cve>
+        <exploitdb>28054</exploitdb>
+      </references>
+    </vulnerability>
+    <vulnerability>
+      <title>XSS vulnerability in IndiaNIC Testimonial 2.2</title>
+      <references>
+        <url>http://seclists.org/fulldisclosure/2013/Sep/5</url>
+        <exploitdb>28054</exploitdb>
+      </references>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="usernoise">
+    <vulnerability>
+      <title>XSS vulnerability in Usernoise 3.7.8</title>
+      <references>
+        <url>http://wordpress.org/plugins/usernoise/changelog/</url>
+        <exploitdb>27403</exploitdb>        
+      </references>
+      <fixed_in>3.7.9</fixed_in>
+    </vulnerability>
+  </plugin>
 </vulnerabilities>