From 69fd90ed3afd7db98b3431104245cacca571237d Mon Sep 17 00:00:00 2001
From: Peter <vanderlaan.pm@gmail.com>
Date: Fri, 3 Jan 2014 15:52:57 +0100
Subject: [PATCH] Update plugin_vulns.xml

---
 data/plugin_vulns.xml | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 8aeda6b2..9040eb29 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -6443,6 +6443,15 @@
   </plugin>
 
   <plugin name="search-and-share">
+    <vulnerability>
+      <title>search-and-share 0.9.3 - SearchAndShare.php Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>93260</osvdb>
+        <url>http://packetstormsecurity.com/files/121595/</url>
+        <url>http://seclists.org/fulldisclosure/2013/May/49</url>
+      </references>
+      <type>XSS</type>
+    </vulnerability>
     <vulnerability>
       <title>search-and-share &lt;= 0.9.3 - XSS in ZeroClipboard</title>
       <references>
@@ -7556,12 +7565,13 @@
       <title>Spider Event Calendar - Security Bypass, Cross-Site Scripting and SQLi Vulnerabilities</title>
       <references>
         <secunia>53481</secunia>
+        <osvdb>93582</osvdb>
+        <osvdb>93583</osvdb>
         <osvdb>93584</osvdb>
         <osvdb>93585</osvdb>
         <osvdb>93586</osvdb>
         <osvdb>93587</osvdb>
         <osvdb>93588</osvdb>
-        <osvdb>93582</osvdb>
       </references>
       <type>MULTI</type>
     </vulnerability>