Added some 'old' OSVDB vulns

2013-10-25 16:59:35 +02:00
parent 0c406d72f6
commit 6fedeffe03
1 changed files with 26 additions and 5 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -1162,6 +1162,8 @@
    <vulnerability>
      <title>SimpleMail 1.0.6 - Stored XSS</title>
      <references>
+        <osvdb>84534</osvdb>
+        <cve>2012-2579</cve>
        <exploitdb>20361</exploitdb>
        <secunia>50208</secunia>
      </references>
@@ -1173,10 +1175,13 @@
    <vulnerability>
      <title>Postie 1.4.3 - Stored XSS</title>
      <references>
+        <osvdb>84532</osvdb>
+        <cve>2012-2580</cve>
        <exploitdb>20360</exploitdb>
        <secunia>50207</secunia>
      </references>
      <type>XSS</type>
+      <fixed_in>1.5.15</fixed_in>
    </vulnerability>
  </plugin>

@@ -5119,8 +5124,18 @@

  <plugin name="vitamin">
    <vulnerability>
-      <title>Vitamin - Two Arbitrary File Disclosure Vulnerabilities</title>
+      <title>Vitamin 1.0 - add_headers.php path Parameter Traversal Arbitrary File Access</title>
      <references>
+        <osvdb>84463</osvdb>
+        <secunia>50176</secunia>
+      </references>
+      <type>LFI</type>
+      <fixed_in>1.1</fixed_in>
+    </vulnerability>
+    <vulnerability>
+      <title>Vitamin 1.0 - minify.php path Parameter Traversal Arbitrary File Access</title>
+      <references>
+        <osvdb>84464</osvdb>
        <secunia>50176</secunia>
      </references>
      <type>LFI</type>
@@ -5130,8 +5145,9 @@

  <plugin name="featured-post-with-thumbnail">
    <vulnerability>
-      <title>Featured Post with thumbnail - Unspecified timthumb Vulnerability</title>
+      <title>Featured Post with thumbnail 1.4 - Unspecified timthumb Vulnerability</title>
      <references>
+        <osvdb>84460<osvdb>
        <secunia>50161</secunia>
      </references>
      <type>UNKNOWN</type>
@@ -5141,8 +5157,10 @@

  <plugin name="wp-effective-lead-management">
    <vulnerability>
-      <title>WP Lead Management - Script Insertion Vulnerabilities</title>
+      <title>WP Lead Management 3.0.0 - Script Insertion Vulnerabilities</title>
      <references>
+        <osvdb>84462</osvdb>
+        <exploitdb>20270</exploitdb>
        <secunia>50166</secunia>
      </references>
      <type>XSS</type>
@@ -5165,7 +5183,9 @@
    <vulnerability>
      <title>G-Lock Double Opt-in Manager - Two Security Bypass Vulnerabilities</title>
      <references>
+        <osvdb>84434</osvdb>
        <secunia>50100</secunia>
+        <url>http://packetstormsecurity.org/files/115173/</url>
      </references>
      <type>AUTHBYPASS</type>
    </vulnerability>
@@ -6139,8 +6159,9 @@

  <plugin name="syntaxhighlighter">
    <vulnerability>
-      <title>syntaxhighlighter - clipboard.swf XSS</title>
+      <title>SyntaxHighlighter Evolved 3.1.5 - clipboard.swf Unspecified XSS</title>
      <references>
+        <osvdb>92848</osvdb>
        <secunia>53235</secunia>
      </references>
      <type>XSS</type>
@@ -6161,7 +6182,7 @@

  <plugin name="easy-adsense-lite">
    <vulnerability>
-      <title>easy-adsense-lite 6.06 - CSRF</title>
+      <title>Easy AdSense Lite 6.06 - Setting Manipulation CSRF</title>
      <references>
        <osvdb>92910</osvdb>
        <cve>2013-2702</cve>