garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update vuln db

Browse Source
This commit is contained in:
Peter van der Laan
2014-02-02 09:24:21 +01:00
parent b44869ec49
commit 6c62b06e46
2 changed files with 61 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

59
data/plugin_vulns.xml
View File

@@ -2007,12 +2007,20 @@
</plugin>
<plugin name="wp-property">
<vulnerability>
<title>WP Property &lt;= 1.38.3.2 - Non-administrative User XMLI Remote Information Disclosure</title>
<references>
<osvdb>102709</osvdb>
</references>
<type>UNKNOWN</type>
<fixed_in>1.38.4</fixed_in>
</vulnerability>
<vulnerability>
<title>WP Property &lt;= 1.35.0 - Arbitrary File Upload</title>
<references>
<osvdb>82656</osvdb>
<exploitdb>18987</exploitdb>
<exploitdb>23651</exploitdb>
<osvdb>82656</osvdb>
<secunia>49394</secunia>
<url>http://packetstormsecurity.com/files/113274/</url>
</references>
@@ -5974,6 +5982,25 @@
</vulnerability>
</plugin>
<plugin name="sagepay-direct-for-woocommerce-payment-gateway">
<vulnerability>
<title>WooCommerce SagePay Direct Payment Gateway 0.1.6.6 - pages/3DCallBack.php Multiple Parameter Reflected XSS</title>
<references>
<osvdb>102746</osvdb>
</references>
<type>XSS</type>
<fixed_in>0.1.6.7</fixed_in>
</vulnerability>
<vulnerability>
<title>WooCommerce SagePay Direct Payment Gateway 0.1.6.6 - pages/3DComplete.php Multiple Parameter Reflected XSS</title>
<references>
<osvdb>102747</osvdb>
</references>
<type>XSS</type>
<fixed_in>0.1.6.7</fixed_in>
</vulnerability>
</plugin>
<plugin name="woocommerce-predictive-search">
<vulnerability>
<title>WooCommerce Predictive Search - index.php rs Parameter XSS</title>
@@ -9733,6 +9760,13 @@
</plugin>
<plugin name="amerisale-re">
<vulnerability>
<title>Amerisale-Re - Remote Shell Upload</title>
<references>
<url>http://packetstormsecurity.com/files/124992/</url>
</references>
<type>UPLOAD</type>
</vulnerability>
<vulnerability>
<title>Amerisale-Re - netriesdetail/upload.php edit Parameter Reflected XSS</title>
<references>
@@ -10553,4 +10587,27 @@
</vulnerability>
</plugin>
<plugin name="wp-social-invitations">
<vulnerability>
<title>WP Social Invitations &lt;=1.4.4.2 - test.php Multiple Parameter Reflected XSS</title>
<references>
<osvdb>102741</osvdb>
<secunia>56711</secunia>
</references>
<type>XSS</type>
<fixed_in>1.4.4.3</fixed_in>
</vulnerability>
</plugin>
<plugin name="infusionsoft">
<vulnerability>
<title>Infusionsoft Gravity Forms Add-on 1.5.6 - Unspecified XSS</title>
<references>
<osvdb>102742</osvdb>
</references>
<type>XSS</type>
<fixed_in>1.5.7</fixed_in>
</vulnerability>
</plugin>
</vulnerabilities>

4
data/theme_vulns.xml
View File

@@ -2043,8 +2043,10 @@
<theme name="photocrati-theme">
<vulnerability>
<title>Photocrati - XSS</title>
<title>Photocrati 4.7.3 - photocrati-gallery/ecomm-sizes.php prod_id Parameter Reflected XSS</title>
<references>
<osvdb>102717</osvdb>
<secunia>56690</secunia>
<url>http://packetstormsecurity.com/files/124986/</url>
</references>
<type>XSS</type>