From 2c9445485857251b492c8b51f8326d2bc5b2e773 Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Thu, 10 Oct 2013 10:50:14 +0200
Subject: [PATCH] Update wp_vulns.xml

---
 data/wp_vulns.xml | 38 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)

diff --git a/data/wp_vulns.xml b/data/wp_vulns.xml
index 361e81c6..a6c5446a 100644
--- a/data/wp_vulns.xml
+++ b/data/wp_vulns.xml
@@ -2167,4 +2167,42 @@
     </vulnerability>
   </wordpress>
 
+  <wordpress version="1.5">
+    <vulnerability>
+      <title>WordPress wp-trackback.php tb_id Parameter SQL Injection</title>
+      <references>
+        <cve>2005-1687</cve>
+        <osvdb>16701</osvdb>
+        <osvdb>16702</osvdb>
+        <osvdb>16703</osvdb>
+        <url></url>
+      </references>
+      <type>SQLI</type>
+      <fixed_in>1.5.1</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>WordPress post.php p Parameter XSS</title>
+      <references>
+        <osvdb>16702</osvdb>
+        <osvdb>16701</osvdb>
+        <osvdb>16703</osvdb>
+        <url></url>
+      </references>
+      <type>XSS</type>
+      <fixed_in>1.5.1</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>WordPress Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <cve>2005-1688</cve>
+        <osvdb>16703</osvdb>
+        <osvdb>16701</osvdb>
+        <osvdb>16702</osvdb>
+        <url></url>
+      </references>
+      <type>UNKNOWN</type>
+      <fixed_in>1.5.1</fixed_in>
+    </vulnerability>
+  </wordpress>
+
 </vulnerabilities>