From fb98b3cc9af4898aeb0ad84b8c90ab2c6e8e2e81 Mon Sep 17 00:00:00 2001 From: Henri Salo Date: Sun, 27 Jul 2014 19:18:25 +0300 Subject: [PATCH] mp3-jplayer vulnerability, references --- data/plugin_vulns.xml | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml index 58f82424..31b70aaf 100644 --- a/data/plugin_vulns.xml +++ b/data/plugin_vulns.xml @@ -8300,6 +8300,7 @@ jammer <= 0.2 - jPlayer.swf XSS + 92254 53106 XSS @@ -12058,6 +12059,14 @@ XSS + + MP3-jPlayer 1.8.3 - jPlayer.swf XSS + + 92254 + + 1.8.4 + XSS + @@ -12124,11 +12133,13 @@ XCloner 3.1.0 - Multiple Actions CSRF 2014-2340 + 2014-2579 104402 57362 32701 http://packetstormsecurity.com/files/125991/ https://www.htbridge.com/advisory/HTB23206 + https://www.htbridge.com/advisory/HTB23207 CSRF 3.1.1 @@ -13386,6 +13397,7 @@ Toolpage 1.6.1 - XSS vulnerability in includes/getTipo.php 2014-4560 + 108704 http://codevigilant.com/disclosure/wp-plugin-toolpage-a3-cross-site-scripting-xss/ XSS @@ -13397,6 +13409,7 @@ Cloak and Encrypt < 2.0 - XSS vulnerability in go.php 2014-4563 + 108895 http://codevigilant.com/disclosure/wp-plugin-url-cloak-encrypt-a3-cross-site-scripting-xss/ XSS