Sintic_gallery FPD & file upload

2013-01-06 15:23:21 +01:00
parent ba2a4fa0aa
commit 6f406fe807
1 changed files with 15 additions and 1 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -25,12 +25,26 @@ ryandewhurst at gmail
      <title></title>
      <reference></reference>
      <type></type>
-    <vulnerability>
+    </vulnerability>
  </plugin>

 -->
 <vulnerabilities>

+  <plugin name="sintic_gallery">
+    <vulnerability>
+      <title>sintic_gallery Arbitrary File Upload Vulnerability</title>
+      <reference>http://1337day.com/exploit/19993</reference>
+      <!-- Metasploit : <reference>http://1337day.com/exploit/20065</reference> -->
+      <type>UPLOAD</type>
+    </vulnerability>
+    <vulnerability>
+      <title>sintic_gallery Path Disclosure Vulnerability</title>
+      <reference>http://1337day.com/exploit/20020</reference>
+      <type>FPD</type>
+    </vulnerability>
+  </plugin>
+
  <plugin name="wp-useronline">
    <vulnerability>
      <title>WP-UserOnline Full Path Disclosure</title>