diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml index 01cfbf47..c4e10263 100644 --- a/data/plugin_vulns.xml +++ b/data/plugin_vulns.xml @@ -758,7 +758,16 @@ - + + + Mac Photo Gallery 2.7 - upload-file.php File Upload PHP Code Execution + + 82844 + 49468 + 19056 + + UPLOAD + SWF Vulnerable to XSS Bundled in Many WordPress Plugins @@ -1594,10 +1603,12 @@ - + - Auctions 2.0.1.3 - Arbitrary File Upload Vulnerability + Sitemile Auctions 2.0.1.3 - wp-content/plugins/auctionPlugin/upload.php File Upload PHP Code Execution + 83075 + 49497 http://packetstormsecurity.com/files/113568/ UPLOAD @@ -1704,9 +1715,12 @@ - Top Quark Architecture Version 2.10 - Arbitrary File Upload Vulnerability + Top Quark Architecture 2.1.0 - lib/js/fancyupload/showcase/batch/script.php File Upload PHP Code Execution + 82843 + 49465 19053 + http://packetstormsecurity.com/files/113522/ UPLOAD @@ -1791,9 +1805,11 @@ - Custom Content Type Manager 0.9.5.13pl - Arbitrary File Upload Vulnerability + Custom Content Type Manager 0.9.5.13pl - upload_form.php File Upload PHP Code Execution + 82904 19058 + http://packetstormsecurity.com/files/113520/ UPLOAD @@ -4483,6 +4499,15 @@ + + Evarisk 5.1.5.4 - include/lib/actionsCorrectives/activite/uploadPhotoApres.php File Upload PHP Code Execution + + 82960 + 49521 + http://packetstormsecurity.com/files/113638/ + + UPLOAD + Evarisk <= 5.1.3.6 - SQL Injection Vulnerability @@ -4490,13 +4515,6 @@ SQLI - - Evarisk 5.1.5.4 - Shell Upload - - http://packetstormsecurity.com/files/113638/ - - UPLOAD - @@ -4925,11 +4943,13 @@ - Annonces 1.2.0.0 - Remote File Inclusion + Annonces 1.2.0.1 - admin/theme.php File Upload PHP Code Execution - 17863 + 82948 + 49488 + http://packetstormsecurity.com/files/113637/ - RFI + UPLOAD @@ -9928,4 +9948,28 @@ + + + Nmedia MailChimp 3.1 - api_mailchimp/postToMailChimp.php abs_path Parameter XSS + + 83083 + 49538 + + XSS + 3.2 + + + + + + NS Utilities 1.0 - Unspecified Remote Issue + + 82944 + 49476 + + UNKNOWN + 1.1 + + +