From 097898b120cb7769de58e406989dc415d9fc3b08 Mon Sep 17 00:00:00 2001
From: Henri Salo <henri@nerv.fi>
Date: Sat, 26 Jul 2014 17:05:06 +0300
Subject: [PATCH 1/2] CVE-2011-3981/allwebmenus-wordpress-menu-plugin

---
 data/plugin_vulns.xml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index a3e37965..feec1ee4 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -3344,7 +3344,10 @@
     <vulnerability>
       <title>AllWebMenus 1.1.3 - Remote File Inclusion</title>
       <references>
+        <cve>2011-3981</cve>
+        <osvdb>75615</osvdb>
         <exploitdb>17861</exploitdb>
+        <secunia>46068</secunia>
       </references>
       <type>RFI</type>
     </vulnerability>

From ef3ed86096a7b7fecbb32799f4201137b0e1c1bc Mon Sep 17 00:00:00 2001
From: Henri Salo <henri@nerv.fi>
Date: Sat, 26 Jul 2014 18:26:28 +0300
Subject: [PATCH 2/2] CVE-2011-4562/redirection

---
 data/plugin_vulns.xml | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index feec1ee4..e611b4a8 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -5903,6 +5903,7 @@
         <osvdb>75638</osvdb>
         <cve>2011-4106</cve>
         <exploitdb>17872</exploitdb>
+        <url>http://markmaunder.com/2011/08/01/zero-day-vulnerability-in-many-wordpress-themes/</url>
       </references>
       <type>UPLOAD</type>
     </vulnerability>
@@ -10451,6 +10452,16 @@
       <type>XSS</type>
       <fixed_in>2.3.4</fixed_in>
     </vulnerability>
+    <vulnerability>
+      <title>Redirection - view/admin/log_item.php Non-existent Posts Referer HTTP Header XSS</title>
+      <references>
+        <cve>2011-4562</cve>
+        <osvdb>76092</osvdb>
+        <secunia>46310</secunia>
+      </references>
+      <type>XSS</type>
+      <fixed_in>2.2.10</fixed_in>
+    </vulnerability>
     <vulnerability>
       <title>Redirection - wp-admin/tools.php id Parameter XSS</title>
       <references>