Added vulns & refs

data/wp_vulns.xml

@@ -11,6 +11,39 @@
       <reference>http://osvdb.org/94235</reference>
       <type>UNKNOWN</type>
     </vulnerability>
+    <vulnerability>
+      <title>WordPress Multiple XSS</title>
+      <reference>http://osvdb.org/94791</reference>
+      <reference>http://osvdb.org/94785</reference>
+      <reference>http://osvdb.org/94786</reference>
+      <reference>http://osvdb.org/94790</reference>
+      <type>XSS</type>
+    </vulnerability>
+    <vulnerability>
+      <title>WordPress TinyMCE Plugin Flash Applet Unspecified Spoofing Weakness</title>
+      <reference>http://osvdb.org/94787</reference>
+      <type>UNKNOWN</type>
+    </vulnerability>
+    <vulnerability>
+      <title> WordPress File Upload Unspecified Path Disclosure</title>
+      <reference>http://osvdb.org/94788</reference>
+      <type>UNKNOWN</type>
+    </vulnerability>
+    <vulnerability>
+      <title>WordPress oEmbed Unspecified XML External Entity (XXE) Arbitrary File Disclosure</title>
+      <reference>http://osvdb.org/94789</reference>
+      <type>XXE</type>
+    </vulnerability>
+    <vulnerability>
+      <title>WordPress Multiple Role Remote Privilege Escalation</title>
+      <reference>http://osvdb.org/94783</reference>
+      <type>UNKNOWN</type>
+    </vulnerability>
+    <vulnerability>
+      <title>WordPress HTTP API Unspecified Server Side Request Forgery (SSRF)</title>
+      <reference>http://osvdb.org/94784</reference>
+      <type>SSRF</type>
+    </vulnerability>
   </wordpress>
 
   <wordpress version="3.5">