Update vuln db

2014-02-10 13:29:47 +01:00
parent 518135006c
commit 9761d70f23
2 changed files with 43 additions and 1 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -6063,10 +6063,20 @@
  </plugin>

  <plugin name="sagepay-direct-for-woocommerce-payment-gateway">
+    <vulnerability>
+      <title>WooCommerce SagePay Direct Payment Gateway 0.1.6.6 - pages/3DRedirect.php Multiple Parameter Reflected XSS</title>
+      <references>
+        <osvdb>102882</osvdb>
+        <secunia>56801</secunia>
+      </references>
+      <type>XSS</type>
+      <fixed_in>0.1.6.7</fixed_in>
+    </vulnerability>
    <vulnerability>
      <title>WooCommerce SagePay Direct Payment Gateway 0.1.6.6 - pages/3DCallBack.php Multiple Parameter Reflected XSS</title>
      <references>
        <osvdb>102746</osvdb>
+        <secunia>56801</secunia>
      </references>
      <type>XSS</type>
      <fixed_in>0.1.6.7</fixed_in>
@@ -6075,6 +6085,7 @@
      <title>WooCommerce SagePay Direct Payment Gateway 0.1.6.6 - pages/3DComplete.php Multiple Parameter Reflected XSS</title>
      <references>
        <osvdb>102747</osvdb>
+        <secunia>56801</secunia>
      </references>
      <type>XSS</type>
      <fixed_in>0.1.6.7</fixed_in>
@@ -10791,4 +10802,15 @@
    </vulnerability>
  </plugin>

+  <plugin name="delightful-downloads">
+    <vulnerability>
+      <title>Delightful Downloads 1.3.1.1 - meta-boxes.php dedo_meta_boxes_save Function Multiple Action Authorization Bypass</title>
+      <references>
+        <osvdb>102932</osvdb>
+      </references>
+      <type>AUTHBYPASS</type>
+      <fixed_in>1.3.2</fixed_in>
+    </vulnerability>
+  </plugin>
+
 </vulnerabilities>