diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml index a7f5948f..473aeec8 100644 --- a/data/plugin_vulns.xml +++ b/data/plugin_vulns.xml @@ -2111,6 +2111,8 @@ Login With Ajax - Cross-Site Request Forgery Vulnerability + 93031 + 2013-2707 52950 CSRF @@ -2607,6 +2609,7 @@ WP Symposium <= 12.12 - Multiple SQL Injection Vulnerabilities + 89455 50674 http://ceriksen.com/2013/02/18/wp-symposium-multiple-sql-injection/ @@ -4609,6 +4612,8 @@ Cardoza Wordpress poll - Cross-Site Request Forgery Vulnerability + 89443 + 2013-1401 51925 CSRF @@ -4649,6 +4654,8 @@ DVS Custom Notification - Cross-Site Request Forgery Vulnerability + 89441 + 2012-4921 51531 CSRF @@ -6073,10 +6080,11 @@ - easy-adsense-lite - CSRF + easy-adsense-lite 6.06 - CSRF - 52953 + 92910 2013-2702 + 52953 CSRF 6.10 @@ -7206,6 +7214,8 @@ 98352 2013-5977 + 28959 + 55265 CSRF 1.5.1.15 @@ -7215,6 +7225,7 @@ 98353 2013-5978 + 28959 XSS 1.5.1.15 diff --git a/data/theme_vulns.xml b/data/theme_vulns.xml index 65bdfc3b..7270face 100644 --- a/data/theme_vulns.xml +++ b/data/theme_vulns.xml @@ -1573,8 +1573,10 @@ - Wordpress theme pinboard 1.0.6 XSS + pinboard 1.0.6 - includes/theme-options.php tab Parameter XSS + 90070 + 2013-0286 52079 http://seclists.org/oss-sec/2013/q1/274 http://cxsecurity.com/issue/WLB-2013020062