Added CVE-2014-3961. Fix #498

2014-06-17 13:19:56 +02:00
parent 2c6082f454
commit 717e5b07d1
1 changed files with 17 additions and 0 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -12911,4 +12911,21 @@
    </vulnerability>
  </plugin>

+  <plugin name="participants-database">
+    <vulnerability>
+     <title>Participants Database 1.5.4.8 - pdb-signup CSV_type Action query Parameter SQL Injection</title>
+      <references>
+        <osvdb>107626</osvdb>
+        <cve>2014-3961</cve>
+        <secunia>58816</secunia>
+        <url>http://www.exploit-db.com/exploits/33613</url>
+        <url>http://packetstormsecurity.com/files/126878/</url>
+        <url>http://www.securityfocus.com/bid/67769</url>
+        <url>http://www.securityfocus.com/bid/67938</url>
+      </references>
+      <type>SQLI</type>
+      <fixed_in>1.5.4.9</fixed_in>
+    </vulnerability>
+  </plugin>
+
 </vulnerabilities>