From 88adc5676fdef15215d19a483ff50cf58f5270b2 Mon Sep 17 00:00:00 2001
From: Peter <vanderlaan.pm@gmail.com>
Date: Tue, 24 Jun 2014 22:11:53 +0200
Subject: [PATCH] Update vuln db

---
 data/plugin_vulns.xml | 25 +++++++++++++++++++++++++
 data/theme_vulns.xml  | 11 +++++++++++
 2 files changed, 36 insertions(+)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 514f3ba8..01a24e3b 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -13058,4 +13058,29 @@
     </vulnerability>
   </plugin>
 
+  <plugin name="member-approval">
+    <vulnerability>
+     <title>Member Approval 131109 - wp-admin/options-general.php Option Manipulation CSRF</title>
+      <references>
+        <osvdb>107845</osvdb>
+        <cve>2014-3850</cve>
+        <url>http://www.securityfocus.com/bid/67952</url>
+        <url>http://packetstormsecurity.com/files/127024/</url>
+      </references>
+      <type>CSRF</type>
+    </vulnerability>
+  </plugin>
+
+  <plugin name="jw-player-plugin-for-wordpress">
+    <vulnerability>
+     <title>JW Player 2.1.2 - wp-admin/admin.php Player Deletion CSRF</title>
+      <references>
+        <osvdb>107846</osvdb>
+        <url>http://www.securityfocus.com/bid/67954</url>
+        <url>http://packetstormsecurity.com/files/127025/</url>
+      </references>
+      <type>CSRF</type>
+    </vulnerability>
+  </plugin>
+
 </vulnerabilities>
diff --git a/data/theme_vulns.xml b/data/theme_vulns.xml
index 9cfc8164..09aabe13 100644
--- a/data/theme_vulns.xml
+++ b/data/theme_vulns.xml
@@ -3536,4 +3536,15 @@
     </vulnerability>
   </theme>
 
+  <theme name="SCv1">
+    <vulnerability>
+      <title>SCv1 - download.php file Parameter Traversal Remote File Access</title>
+      <references>
+        <osvdb>107940</osvdb>
+        <url>http://packetstormsecurity.com/files/127022/</url>
+      </references>
+      <type>UNKNOWN</type>
+    </vulnerability>
+  </theme>
+
 </vulnerabilities>