From 8a26848086d25d9a73f93c88c10ef1025937f3b3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ad=C3=A9la=20Goldov=C3=A1?= <adela.goldova@gmail.com>
Date: Wed, 11 Sep 2013 00:14:11 +0200
Subject: [PATCH 1/5] Added HMS Testimonials

---
 data/plugin_vulns.xml | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index ed665142..0845dd78 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -6417,4 +6417,32 @@
     </vulnerability>
   </plugin>
 
+  <plugin name="hms-testimonials">
+    <vulnerability>
+      <title>CSRF in HMS Testimonials 2.0.10</title>
+      <references>
+        <url>http://wordpress.org/plugins/hms-testimonials/changelog/</url>
+        <cve>2013-4240</cve>
+        <osvdb>96107</osvdb>
+        <osvdb>96108</osvdb>
+        <osvdb>96109</osvdb>
+        <osvdb>96110</osvdb>
+        <osvdb>96111</osvdb>
+        <secunia>54402</secunia>
+      </references>
+    </vulnerability>
+    <vulnerability>
+      <title>XSS in HMS Testimonials 2.0.10</title>
+      <references>
+        <url>http://wordpress.org/plugins/hms-testimonials/changelog/</url>
+        <cve>2013-4241</cve>
+        <osvdb>96107</osvdb>
+        <osvdb>96108</osvdb>
+        <osvdb>96109</osvdb>
+        <osvdb>96110</osvdb>
+        <osvdb>96111</osvdb>
+        <secunia>54402</secunia>
+      </references>
+    </vulnerability>
+  </plugin>
 </vulnerabilities>

From 5bfdde158a68038f8cc6045eb114f3844e6c147e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ad=C3=A9la=20Goldov=C3=A1?= <adela.goldova@gmail.com>
Date: Wed, 11 Sep 2013 00:15:17 +0200
Subject: [PATCH 2/5] Added IndiaNIC Testimonial

---
 data/plugin_vulns.xml | 26 ++++++++++++++++++++++++++
 1 file changed, 26 insertions(+)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 0845dd78..9dcd4644 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -6445,4 +6445,30 @@
       </references>
     </vulnerability>
   </plugin>
+
+  <plugin name="indianic-testimonial">
+    <vulnerabilitiy>
+      <title>CSRF vulnerability in IndiaNIC Testimonial 2.2</title>
+      <references>
+        <url>http://seclists.org/fulldisclosure/2013/Sep/5</url>
+        <cve>2013-5672</cve>
+        <exploitdb>28054</exploitdb>
+      </references>
+    </vulnerability>
+    <vulnerability>
+      <title>SQL Injection vulnerability in IndiaNIC Testimonial 2.2</title>
+      <references>
+        <url>http://seclists.org/fulldisclosure/2013/Sep/5</url>
+        <cve>2013-5673</cve>
+        <exploitdb>28054</exploitdb>
+      </references>
+    </vulnerability>
+    <vulnerability>
+      <title>XSS vulnerability in IndiaNIC Testimonial 2.2</title>
+      <references>
+        <url>http://seclists.org/fulldisclosure/2013/Sep/5</url>
+        <exploitdb>28054</exploitdb>
+      </references>
+    </vulnerability>
+  </plugin>
 </vulnerabilities>

From e00dddaac64ff2ccf192cac40090497d805fc870 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ad=C3=A9la=20Goldov=C3=A1?= <adela.goldova@gmail.com>
Date: Wed, 11 Sep 2013 00:18:20 +0200
Subject: [PATCH 3/5] Added Usernoise

---
 data/plugin_vulns.xml | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 9dcd4644..57325e20 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -6471,4 +6471,14 @@
       </references>
     </vulnerability>
   </plugin>
+
+  <plugin name="usernoise">
+    <vulnerability>
+      <title>XSS vulnerability in Usernoise 3.7.8</title>
+      <references>
+        <url>http://wordpress.org/plugins/usernoise/changelog/</url>
+        <exploitdb>27403</exploitdb>
+      </references>
+    </vulnerability>
+  </plugin>
 </vulnerabilities>

From d833940f3bd386095660b20b839616aedc2948c2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ad=C3=A9la=20Goldov=C3=A1?= <adela.goldova@gmail.com>
Date: Wed, 11 Sep 2013 14:14:49 +0200
Subject: [PATCH 4/5] Fixed typo

---
 data/plugin_vulns.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 57325e20..57c92518 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -6447,7 +6447,7 @@
   </plugin>
 
   <plugin name="indianic-testimonial">
-    <vulnerabilitiy>
+    <vulnerability>
       <title>CSRF vulnerability in IndiaNIC Testimonial 2.2</title>
       <references>
         <url>http://seclists.org/fulldisclosure/2013/Sep/5</url>

From 39af0d554151258dc5b7122a1d33a4a002c725a8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ad=C3=A9la=20Goldov=C3=A1?= <adela.goldova@gmail.com>
Date: Wed, 11 Sep 2013 18:51:55 +0200
Subject: [PATCH 5/5] Added fixed_in tag on HMS Testimonial and Usernoise.
 IndiaNIC Testimonals remains unfixed but is removed from plugin directory

---
 data/plugin_vulns.xml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 57c92518..9dc3c98d 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -6430,6 +6430,7 @@
         <osvdb>96111</osvdb>
         <secunia>54402</secunia>
       </references>
+      <fixed_in>2.0.11</fixed_in>
     </vulnerability>
     <vulnerability>
       <title>XSS in HMS Testimonials 2.0.10</title>
@@ -6443,6 +6444,7 @@
         <osvdb>96111</osvdb>
         <secunia>54402</secunia>
       </references>
+      <fixed_in>2.0.11</fixed_in>
     </vulnerability>
   </plugin>
 
@@ -6477,8 +6479,9 @@
       <title>XSS vulnerability in Usernoise 3.7.8</title>
       <references>
         <url>http://wordpress.org/plugins/usernoise/changelog/</url>
-        <exploitdb>27403</exploitdb>
+        <exploitdb>27403</exploitdb>        
       </references>
+      <fixed_in>3.7.9</fixed_in>
     </vulnerability>
   </plugin>
 </vulnerabilities>