diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 514f3ba8..01a24e3b 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -13058,4 +13058,29 @@
     </vulnerability>
   </plugin>
 
+  <plugin name="member-approval">
+    <vulnerability>
+     <title>Member Approval 131109 - wp-admin/options-general.php Option Manipulation CSRF</title>
+      <references>
+        <osvdb>107845</osvdb>
+        <cve>2014-3850</cve>
+        <url>http://www.securityfocus.com/bid/67952</url>
+        <url>http://packetstormsecurity.com/files/127024/</url>
+      </references>
+      <type>CSRF</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="jw-player-plugin-for-wordpress">
+    <vulnerability>
+     <title>JW Player 2.1.2 - wp-admin/admin.php Player Deletion CSRF</title>
+      <references>
+        <osvdb>107846</osvdb>
+        <url>http://www.securityfocus.com/bid/67954</url>
+        <url>http://packetstormsecurity.com/files/127025/</url>
+      </references>
+      <type>CSRF</type>
+    </vulnerability>
+  </plugin>
+
 </vulnerabilities>
diff --git a/data/theme_vulns.xml b/data/theme_vulns.xml
index 9cfc8164..09aabe13 100644
--- a/data/theme_vulns.xml
+++ b/data/theme_vulns.xml
@@ -3536,4 +3536,15 @@
     </vulnerability>
   </theme>
 
+  <theme name="SCv1">
+    <vulnerability>
+      <title>SCv1 - download.php file Parameter Traversal Remote File Access</title>
+      <references>
+        <osvdb>107940</osvdb>
+        <url>http://packetstormsecurity.com/files/127022/</url>
+      </references>
+      <type>UNKNOWN</type>
+    </vulnerability>
+  </theme>
+
 </vulnerabilities>