diff --git a/data/wp_vulns.xml b/data/wp_vulns.xml
index e35ecafa..1f4bc32b 100644
--- a/data/wp_vulns.xml
+++ b/data/wp_vulns.xml
@@ -22,6 +22,11 @@
                  xsi:noNamespaceSchemaLocation="vuln.xsd">
 
   <wordpress version="3.5">
+    <vulnerability>
+      <title>WordPress 3.5 Cross-Site Scripting (XSS)</title>
+      <reference>https://github.com/wpscanteam/wpscan/wiki/WordPress-3.5-Issues</reference>
+      <type>XSS</type>
+    </vulnerability>
     <vulnerability>
       <title>XMLRPC Pingback API Internal/External Port Scanning</title>
       <reference>https://github.com/FireFart/WordpressPingbackPortScanner</reference>