Merge pull request #334 from pvdl/master

Update Wordpress Vulnerabilities

data/plugin_vulns.xml

@@ -4460,15 +4460,6 @@
   </plugin>
 
   <plugin name="portable-phpmyadmin">
-    <vulnerability>
-      <title>Portable-phpMyAdmin - Authentication Bypass</title>
-      <references>
-        <osvdb>98766</osvdb>
-        <cve>2013-4454</cve>
-        <secunia>55270</secunia>
-      </references>
-      <type>AUTHBYPASS</type>
-    </vulnerability>
     <vulnerability>
       <title>portable-phpMyAdmin - Authentication Bypass</title>
       <references>

data/theme_vulns.xml

@@ -1731,7 +1731,7 @@
 
   <theme name="Caulk">
     <vulnerability>
-      <title>Caulk - path disclosure vulnerability.</title>
+      <title>Caulk - path disclosure vulnerability</title>
       <references>
         <osvdb>96723</osvdb>
         <secunia>54662</secunia>
@@ -1741,4 +1741,70 @@
     </vulnerability>
   </theme>
 
+  <theme name="WPLocalPlaces">
+    <vulnerability>
+      <title>WPLocalPlaces - File Upload Remote Code Execution</title>
+      <references>
+        <osvdb>98806</osvdb>
+        <url>http://packetstormsecurity.com/files/123697/</url>
+      </references>
+      <type>UNKNOWN</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="photocrati-theme">
+    <vulnerability>
+      <title>Photocrati - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92836</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="music">
+    <vulnerability>
+      <title>Music - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92837</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="imperial-fairytale">
+    <vulnerability>
+      <title>Imperial Fairytale - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92838</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="feather12">
+    <vulnerability>
+      <title>Feather12 - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92839</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
+  <theme name="studiozen">
+    <vulnerability>
+      <title>Studio Zen - Multiple Script Direct Request Path Disclosure</title>
+      <references>
+        <osvdb>92840</osvdb>
+        <url>http://seclists.org/fulldisclosure/2013/Apr/238</url>
+      </references>
+      <type>FPD</type>
+    </vulnerability>
+  </theme>
+
 </vulnerabilities>