From ad18788c83a4c60834796629048dfb5ab2083da3 Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Mon, 14 Oct 2013 08:20:57 +0200
Subject: [PATCH 1/2] Added OSVDB #97989, #98026, #98091, #98246

---
 data/plugin_vulns.xml | 48 +++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 48 insertions(+)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 268da57a..00041c87 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -7220,4 +7220,52 @@
     </vulnerability>
   </plugin>
 
+  <plugin name="category-wise-search">
+    <vulnerability>
+      <title>Wise Search Widget 1.1 - s Parameter Reflected XSS</title>
+      <references>
+        <osvdb>97989</osvdb>
+      </references>
+      <type>XSS</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="catholic-liturgical-calendar">
+    <vulnerability>
+      <title>Catholic Liturgical Calendar Widget 0.0.1 - Title Field Stored XSS</title>
+      <references>
+        <osvdb>98026</osvdb>
+      </references>
+      <type>XSS</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="zenphoto">
+    <vulnerability>
+      <title>Zenphoto 1.4.5.2 - wordpress_import.php wp_prefix Function SQL Injection</title>
+      <references>
+        <osvdb>98091</osvdb>
+        <exploitdb></exploitdb>
+        <url>http://packetstormsecurity.com/files/123501/</url>
+        <url>http://www.securityfocus.com/bid/62815</url>
+        <url>http://seclists.org/bugtraq/2013/Oct/20</url>
+      </references>
+      <type>SQLI</type>
+      <fixed_in>1.4.5.4</fixed_in>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="bp-group-documents">
+    <vulnerability>
+      <title>Group Documents 1.2 - File Uploading Multiple Parameter Stored XSS</title>
+      <references>
+        <osvdb>98246</osvdb>
+        <secunia>55130</secunia>
+        <url>http://www.securityfocus.com/bid/62886</url>
+      </references>
+      <type>XSS</type>
+    </vulnerability>
+      <fixed_in>1.2.2</fixed_in>
+  </plugin>
+
 </vulnerabilities>

From 9605594d8f4a30d3797009cbd90e409fe9c88b39 Mon Sep 17 00:00:00 2001
From: Peter van der Laan <vanderlaan.pm@gmail.com>
Date: Mon, 14 Oct 2013 08:48:08 +0200
Subject: [PATCH 2/2] Update plugin_vulns.xml

---
 data/plugin_vulns.xml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 00041c87..a22ddffe 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -7245,7 +7245,6 @@
       <title>Zenphoto 1.4.5.2 - wordpress_import.php wp_prefix Function SQL Injection</title>
       <references>
         <osvdb>98091</osvdb>
-        <exploitdb></exploitdb>
         <url>http://packetstormsecurity.com/files/123501/</url>
         <url>http://www.securityfocus.com/bid/62815</url>
         <url>http://seclists.org/bugtraq/2013/Oct/20</url>
@@ -7264,8 +7263,8 @@
         <url>http://www.securityfocus.com/bid/62886</url>
       </references>
       <type>XSS</type>
-    </vulnerability>
       <fixed_in>1.2.2</fixed_in>
+    </vulnerability>
   </plugin>
 
 </vulnerabilities>