Update plugin_vulns.xml

2013-11-14 11:08:37 +01:00
parent 44e53e7225
commit 7d0268a4ce
1 changed files with 33 additions and 0 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -1885,6 +1885,9 @@
      <title>Sharebar &lt;= 1.2.5 - Button Manipulation CSRF</title>
      <references>
        <osvdb>94843</osvdb>
+        <cve>2013-3491</cve>
+        <secunia>52948</secunia>
+        <url>http://www.securityfocus.com/bid/60956</url>
      </references>
      <type>CSRF</type>
    </vulnerability>
@@ -4992,6 +4995,8 @@
      <title>WooCommerce 2.0.12 - index.php calc_shipping_state Parameter XSS</title>
      <references>
        <osvdb>95480</osvdb>
+        <secunia>53930</secunia>
+        <url>http://packetstormsecurity.com/files/122465/</url>
      </references>
      <type>XSS</type>
      <fixed_in>2.0.13</fixed_in>
@@ -5001,6 +5006,7 @@
      <references>
        <osvdb>98754</osvdb>
        <url>http://packetstormsecurity.com/files/123684/</url>
+        <url>http://www.securityfocus.com/bid/63228</url>
      </references>
      <type>XSS</type>
    </vulnerability>
@@ -6894,6 +6900,8 @@
      <title>BuddyPress Extended Friendship Request - wp-admin/admin-ajax.php friendship_request_message Parameter XSS</title>
      <references>
        <osvdb>94807</osvdb>
+        <cve>2013-4944</cve>
+        <secunia>54048</secunia>
      </references>
      <type>XSS</type>
      <fixed_in>1.0.2</fixed_in>
@@ -6960,6 +6968,10 @@
      <title>Pie Register - wp-login.php Multiple Parameter XSS</title>
      <references>
        <osvdb>95160</osvdb>
+        <cve>2013-4954</cve>
+        <secunia>54123</secunia>
+        <url>http://www.securityfocus.com/bid/61140</url>
+        <url>http://xforce.iss.net/xforce/xfdb/85604</url>
      </references>
      <type>XSS</type>
      <fixed_in>1.31</fixed_in>
@@ -8201,4 +8213,25 @@
    </vulnerability>
  </plugin>

+  <plugin name="citizen-space">
+    <vulnerability>
+      <title>Citizen Space 1.0 - Cross-Site Request Forgery Vulnerability</title>
+      <references>
+        <secunia>54256</secunia>
+      </references>
+      <type>CSRF</type>
+      <fixed_in>1.1</fixed_in>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="SearchNSave">
+    <vulnerability>
+      <title>Search N Save - Path Disclosure and Cross-Site Scripting Vulnerabilities</title>
+      <references>
+        <secunia>54078</secunia>
+      </references>
+      <type>MULTI</type>
+    </vulnerability>
+  </plugin>
+
 </vulnerabilities>