Fix #513 - login-rebuilder CSRF

2014-06-30 20:45:30 +02:00
parent 611ef49d03
commit 3498d4317a
1 changed files with 10 additions and 0 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -3,6 +3,16 @@
 <vulnerabilities xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
                 xsi:noNamespaceSchemaLocation="vuln.xsd">

+  <plugin name="login-rebuilder">
+    <vulnerability>
+      <title>login-rebuilder &lt;= 1.2.0 - Cross Site Request Forgery Vulnerability</title>
+      <references>
+        <cve>2014-3882</cve>
+      </references>
+      <type>CSRF</type>
+    </vulnerability>
+  </plugin>
+
  <plugin name="content-slide">
    <vulnerability>
      <title>Content Slide &lt;= 1.4.2 - Cross Site Request Forgery Vulnerability</title>