garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Added Blue Wrench Video Widget vulnerability found by SecurityUndefined

Browse Source
This commit is contained in:
Peter van der Laan
2013-10-25 09:41:17 +02:00
parent be3937c361
commit 96b6e5db87
1 changed files with 10 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
data/plugin_vulns.xml
View File

@@ -6052,8 +6052,7 @@
<title>social-media-widget - malicious code</title> <title>social-media-widget - malicious code</title>
<references> <references>
<url>http://plugins.trac.wordpress.org/changeset?reponame=&amp;old=691839%40social-media-widget%2Ftrunk&amp;new=693941%40social-media-widget%2Ftrunk</url> <url>http://plugins.trac.wordpress.org/changeset?reponame=&amp;old=691839%40social-media-widget%2Ftrunk&amp;new=693941%40social-media-widget%2Ftrunk</url>
<url>http://slashdot.org/submission/2592777/top-wordpress-widget-sold-off-turned-into-seo-spambot <url>http://slashdot.org/submission/2592777/top-wordpress-widget-sold-off-turned-into-seo-spambot</url>
</url>
</references> </references>
<type>UNKNOWN</type> <type>UNKNOWN</type>
<fixed_in>4.0.2</fixed_in> <fixed_in>4.0.2</fixed_in>
@@ -7577,7 +7576,16 @@
</references> </references>
<type>XSS</type> <type>XSS</type>
</vulnerability> </vulnerability>
</plugin>
<plugin name="blue-wrench-videos-widget">
<vulnerability>
<title>Blue Wrench Video-Widget CSRF and Persistent XSS 0day Disclosure</title>
<references>
<url>http://securityundefined.com/wordpress-plugin-blue-wrench-video-widget-csrf-persistent-xss-0day-disclosure/</url>
</references>
<type>MULTI</type>
</vulnerability>
</plugin> </plugin>
<plugin name="wp-mailup"> <plugin name="wp-mailup">