From 9512fd4cca37850f2cbcf309468ba736793ac508 Mon Sep 17 00:00:00 2001
From: erwanlr <erwan.lr@gmail.com>
Date: Mon, 20 Jan 2014 19:26:54 +0100
Subject: [PATCH] Fix #396 - easy-media-gallery vuln updated

---
 data/plugin_vulns.xml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 68e87d5b..951a412e 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -10077,12 +10077,14 @@
 
   <plugin name="easy-media-gallery">
     <vulnerability>
-      <title>Easy Media Gallery 1.2.27 - Unspecified Issue</title>
+      <title>Easy Media Gallery 1.2.25 - includes/emg-settings.php spg_add_admin Function Admin User Creation CSRF</title>
       <references>
         <osvdb>101941</osvdb>
+        <secunia>56408</secunia>
+        <url>http://incolumitas.com/2013/12/17/exploiting-wordpress-plugins-using-insecure-admin-forms-no-3-example-exploit-included/</url>
       </references>
-      <type>UNKNOWN</type>
-      <fixed_in>1.2.29</fixed_in>
+      <type>CSRF</type>
+      <fixed_in>1.2.27</fixed_in>
     </vulnerability>
   </plugin>