From 56b983db450e1a9aa32ac501ddde49eb982810cf Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Wed, 23 Oct 2013 21:14:23 +0200
Subject: [PATCH] Update theme_vulns.xml

---
 data/theme_vulns.xml | 68 +++++++++++++++++++++++++++++++++++++++++++-
 1 file changed, 67 insertions(+), 1 deletion(-)

diff --git a/data/theme_vulns.xml b/data/theme_vulns.xml
index 85bbfb33..98407dff 100644
--- a/data/theme_vulns.xml
+++ b/data/theme_vulns.xml
@@ -1731,7 +1731,7 @@
 
   <theme name="Caulk">
     <vulnerability>
-      <title>Caulk - path disclosure vulnerability.</title>
+      <title>Caulk - path disclosure vulnerability</title>
       <references>
         <osvdb>96723</osvdb>
         <secunia>54662</secunia>
@@ -1741,4 +1741,70 @@
     </vulnerability>
   </theme>
 
+  <theme name="WPLocalPlaces">
+    <vulnerability>
+      <title>WPLocalPlaces - File Upload Remote Code Execution</title>
+      <references>
+        <osvdb>98806</osvdb>
+        <url>http://packetstormsecurity.com/files/123697/</url>
+      </references>
+      <type>UNKNOWN</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="photocrati-theme">
+    <vulnerability>
+      <title>Photocrati - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92836</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="music">
+    <vulnerability>
+      <title>Music - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92837</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="imperial-fairytale">
+    <vulnerability>
+      <title>Imperial Fairytale - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92838</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="feather12">
+    <vulnerability>
+      <title>Feather12 - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92839</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="studiozen">
+    <vulnerability>
+      <title>Studio Zen - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92840</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
 </vulnerabilities>