From ac9647d2b2362f9479d0ceee731cd56914bf32ca Mon Sep 17 00:00:00 2001 From: Peter van der Laan Date: Tue, 29 Oct 2013 13:42:40 +0100 Subject: [PATCH 1/3] Output the vulnerability fix if available It just shows if there is a vulnerability fix. It doesn't check if the fix matches with the current plugin version. So you should check manually if you need to upgrade or not. --- lib/common/models/vulnerability/output.rb | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/lib/common/models/vulnerability/output.rb b/lib/common/models/vulnerability/output.rb index a910cb1d..1a71051b 100644 --- a/lib/common/models/vulnerability/output.rb +++ b/lib/common/models/vulnerability/output.rb @@ -14,7 +14,9 @@ class Vulnerability puts ' | ' + red("* Reference: #{url}") if url end end - end - + if !fixed_in.empty? + puts " | * Fixed in: #{fixed_in}" + end + end end end From 81e3ff6dc07d4e90b524a55d689f5368d1c4efd4 Mon Sep 17 00:00:00 2001 From: Peter van der Laan Date: Tue, 29 Oct 2013 16:04:26 +0100 Subject: [PATCH 2/3] Update wp_vulns.xml --- data/wp_vulns.xml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/data/wp_vulns.xml b/data/wp_vulns.xml index 4d6bfe14..45ea1596 100644 --- a/data/wp_vulns.xml +++ b/data/wp_vulns.xml @@ -26,6 +26,7 @@ http://core.trac.wordpress.org/changeset/25322 XSS + 3.6.1 Crafted String URL Redirect Restriction Bypass @@ -57,6 +58,7 @@ http://core.trac.wordpress.org/changeset/25322 XSS + 3.6.1 From 1ac72096afc6bf3533cb4ccf872f5fa349b99bff Mon Sep 17 00:00:00 2001 From: Peter van der Laan Date: Thu, 31 Oct 2013 10:44:06 +0100 Subject: [PATCH 3/3] Added OSVDB #99195 --- data/plugin_vulns.xml | 24 ++++++++++++++++-------- 1 file changed, 16 insertions(+), 8 deletions(-) diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml index 8debb1f4..1b9b935f 100644 --- a/data/plugin_vulns.xml +++ b/data/plugin_vulns.xml @@ -1353,9 +1353,7 @@ - Auctions 2.0.1.3 - Arbitrary - File Upload Vulnerability - + Auctions 2.0.1.3 - Arbitrary File Upload Vulnerability http://packetstormsecurity.com/files/113568/ @@ -5193,8 +5191,7 @@ - XVE Various Embed - JW Player Multiple Cross-Site Scripting Vulnerabilities - + XVE Various Embed - JW Player Multiple Cross-Site Scripting Vulnerabilities 50173 @@ -6695,8 +6692,7 @@ - BuddyPress Extended Friendship Request - wp-admin/admin-ajax.php friendship_request_message Parameter XSS - + BuddyPress Extended Friendship Request - wp-admin/admin-ajax.php friendship_request_message Parameter XSS 94807 @@ -7390,7 +7386,7 @@ - Landing Pages - Unspecified SQL Injection + Landing Pages - Unspecified SQL Injection 98334 55192 @@ -7784,4 +7780,16 @@ + + + Rockhoist Ratings 1.2.2 - wp-admin/admin-ajax.php postID Parameter SQL Injection + + 99195 + 55445 + http://www.securityfocus.com/bid/63441 + + SQLI + + +