diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index b2c72452..28649d2c 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -1811,6 +1811,7 @@
     <vulnerability>
       <title>WP Symposium plugin &lt;= 12.12 Multiple SQL Injection Vulnerabilities</title>
       <reference>http://secunia.com/advisories/50674/</reference>
+      <reference>http://ceriksen.com/2013/02/18/wp-symposium-multiple-sql-injection/</reference>
       <type>SQLI</type>
     </vulnerability>
   </plugin>
@@ -3717,4 +3718,14 @@
     </vulnerability>
   </plugin>
   
+  <plugin name="wp-online-store">
+    <vulnerability>
+      <title>WordPress WP Online Store Plugin 1.3.1 downloaded before 2013-01-17 File Disclosure and File Inclusion Vulnerabilities</title>
+      <reference>http://secunia.com/advisories/50836/</reference>
+      <reference>http://ceriksen.com/2013/02/18/wordpress-online-store-arbitrary-file-disclosure/</reference>
+      <reference>http://ceriksen.com/2013/02/18/wordpress-online-store-local-file-inclusion-vulnerability/</reference>
+      <type>MULTI</type>
+    </vulnerability>
+  </plugin>
+  
 </vulnerabilities>