Added CVE-2013-3937. Fix #499

2014-06-16 07:46:07 +02:00
parent 1d9162930c
commit 32df782470
1 changed files with 11 additions and 0 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -8329,10 +8329,21 @@
  </plugin>

  <plugin name="contextual-related-posts">
+    <vulnerability>
+      <title>Contextual Related Posts 1.8.10.1 - contextual-related-posts.php Multiple Parameter SQL Injection</title>
+      <references>
+        <osvdb>104655</osvdb>
+        <cve>2014-3937</cve>
+        <url>http://www.securityfocus.com/bid/67853</url>
+      </references>
+      <type>SQLI</type>
+      <fixed_in>1.8.10.2</fixed_in>
+    </vulnerability>
    <vulnerability>
      <title>Contextual Related Posts 1.8.6 - Cross-Site Request Forgery Vulnerability</title>
      <references>
        <osvdb>93088</osvdb>
+        <cve>2013-2710</cve>
        <secunia>52960</secunia>
      </references>
      <type>CSRF</type>