Fix #396 - easy-media-gallery vuln updated

2014-01-20 19:26:54 +01:00
parent e2b6853c46
commit 9512fd4cca
1 changed files with 5 additions and 3 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -10077,12 +10077,14 @@

  <plugin name="easy-media-gallery">
    <vulnerability>
-      <title>Easy Media Gallery 1.2.27 - Unspecified Issue</title>
+      <title>Easy Media Gallery 1.2.25 - includes/emg-settings.php spg_add_admin Function Admin User Creation CSRF</title>
      <references>
        <osvdb>101941</osvdb>
+        <secunia>56408</secunia>
+        <url>http://incolumitas.com/2013/12/17/exploiting-wordpress-plugins-using-insecure-admin-forms-no-3-example-exploit-included/</url>
      </references>
-      <type>UNKNOWN</type>
-      <fixed_in>1.2.29</fixed_in>
+      <type>CSRF</type>
+      <fixed_in>1.2.27</fixed_in>
    </vulnerability>
  </plugin>