garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Added VideoJS XSS in plugins

Browse Source
This commit is contained in:
erwanlr
2013-06-15 16:53:22 +03:00
parent db6a0aa584
commit 385b250c01
1 changed files with 48 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
data/plugin_vulns.xml
View File

@@ -3,6 +3,54 @@
<vulnerabilities xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" <vulnerabilities xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="vuln.xsd"> xsi:noNamespaceSchemaLocation="vuln.xsd">
<plugin name="s3-video">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://secunia.com/advisories/53437/</reference>
<reference>http://seclists.org/fulldisclosure/2013/May/66</reference>
<type>XSS</type>
<fixed_in>0.98</fixed_in>
</vulnerability>
</plugin>
<plugin name="video-embed-thumbnail-generator">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://secunia.com/advisories/53426/</reference>
<reference>http://seclists.org/fulldisclosure/2013/May/66</reference>
<type>XSS</type>
<fixed_in>4.1</fixed_in>
</vulnerability>
</plugin>
<plugin name="1player">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://secunia.com/advisories/53445/</reference>
<reference>http://seclists.org/fulldisclosure/2013/May/66</reference>
<type>XSS</type>
<fixed_in>1.4</fixed_in>
</vulnerability>
</plugin>
<plugin name="external-video-for-everybody">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://secunia.com/advisories/53396/</reference>
<reference>http://seclists.org/fulldisclosure/2013/May/66</reference>
<type>XSS</type>
<fixed_in>2.1</fixed_in>
</vulnerability>
</plugin>
<plugin name="EasySqueezePage">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://seclists.org/fulldisclosure/2013/May/66</reference>
<type>XSS</type>
</vulnerability>
</plugin>
<plugin name="crayon-syntax-highlighter"> <plugin name="crayon-syntax-highlighter">
<vulnerability> <vulnerability>
<title>Crayon Syntax Highlighter Remote File Inclusion</title> <title>Crayon Syntax Highlighter Remote File Inclusion</title>