From 717e5b07d11ac772d6ab96cce14095ec96e0a216 Mon Sep 17 00:00:00 2001
From: Peter <vanderlaan.pm@gmail.com>
Date: Tue, 17 Jun 2014 13:19:56 +0200
Subject: [PATCH] Added CVE-2014-3961. Fix #498

---
 data/plugin_vulns.xml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index d6ff28ff..7e8596a9 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -12911,4 +12911,21 @@
     </vulnerability>
   </plugin>
 
+  <plugin name="participants-database">
+    <vulnerability>
+     <title>Participants Database 1.5.4.8 - pdb-signup CSV_type Action query Parameter SQL Injection</title>
+      <references>
+        <osvdb>107626</osvdb>
+        <cve>2014-3961</cve>
+        <secunia>58816</secunia>
+        <url>http://www.exploit-db.com/exploits/33613</url>
+        <url>http://packetstormsecurity.com/files/126878/</url>
+        <url>http://www.securityfocus.com/bid/67769</url>
+        <url>http://www.securityfocus.com/bid/67938</url>
+      </references>
+      <type>SQLI</type>
+      <fixed_in>1.5.4.9</fixed_in>
+    </vulnerability>
+  </plugin>
+
 </vulnerabilities>