diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index b0ea80ae..b5b90321 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -37,7 +37,7 @@
LFI
- UnGallery Arbitrary Command Execution
+ UnGallery Arbitrary < 2.1.6 Command Execution
http://secunia.com/advisories/50875/
http://ceriksen.com/2012/10/23/wordpress-ungallery-remote-command-injection-vulnerability/
RCE
@@ -46,7 +46,7 @@
- Thank You Counter Button XSS
+ Thank You Counter Button < 1.8.3 XSS
http://secunia.com/advisories/50977/
XSS
@@ -54,7 +54,7 @@
- Bookings XSS
+ Bookings < 1.8.3 XSS
http://secunia.com/advisories/50975/
XSS
@@ -577,6 +577,7 @@
Answer My Question 1.1 Multiple XSS
http://www.securityfocus.com/archive/1/524625/30/0/threaded
+ http://secunia.com/advisories/50655/
XSS
@@ -594,6 +595,7 @@
Wordfence 3.3.5 XSS and IAA
http://seclists.org/fulldisclosure/2012/Oct/139
+ http://secunia.com/advisories/51055/
MULTI
@@ -925,6 +927,11 @@ File Upload Vulnerability
http://brindi.si/g/blog/vulnerable-swf-bundled-in-wordpress-plugins.html
XSS
+
+ WordPress Mac Photo Gallery Plugin Two Security Bypass Security Issues
+ http://secunia.com/advisories/49923/
+ AUTHBYPASS
+
Mac Photo Gallery 2.7 Arbitrary File Upload
http://www.exploit-db.com/exploits/19056/
@@ -1269,6 +1276,7 @@ File Upload Vulnerability
Download Monitor <= 3.3.5.7 Cross Site Scripting
http://www.reactionpenetrationtesting.co.uk/wordpress-download-monitor-xss.html
+ http://secunia.com/advisories/50511/
XSS
@@ -3243,6 +3251,118 @@ File Upload Vulnerability
SQLI
+
+
+
+ WordPress Zingiri Form Builder Plugin < 1.2.1 "error" Cross-Site Scripting Vulnerability
+ http://secunia.com/advisories/50983/
+ XSS
+
+
+
+
+ WordPress White Label CMS Plugin < 1.5.1 Cross-Site Request Forgery Vulnerability
+ http://secunia.com/advisories/50487/
+ CSRF
+
+
+
+
+
+ Wordpress Download Shortcode Plugin < 0.2.1 "file" Arbitrary File Disclosure Vulnerability
+ http://secunia.com/advisories/50924/
+ LFI
+
+
+
+
+
+ WordPress Crayon Syntax Highlighter Plugin < 1.13"wp_load" Remote File Inclusion Vulnerability
+ http://secunia.com/advisories/50804/
+ RFI
+
+
+
+
+
+ WordPress eShop Magic Plugin < 0.2 "file" Arbitrary File Disclosure Vulnerability
+ http://secunia.com/advisories/50933/
+ LFI
+
+
+
+
+
+ WordPress Pinterest "Pin It" Button Lite Plugin < 1.4.0 Multiple Unspecified Vulnerabilities
+ http://secunia.com/advisories/50868/
+ MULTI
+
+
+
+
+
+ WordPress CSS Plus Plugin < 1.3.2 Unspecified Vulnerabilities
+ http://secunia.com/advisories/50793/
+ UNKNOWN
+
+
+
+
+
+ WordPress Multisite Plugin Manager Plugin < 3.1.2 Two Cross-Site Scripting Vulnerabilities
+ http://secunia.com/advisories/50762/
+ XSS
+
+
+
+
+
+ WordPress ABC Test Plugin "id" Cross-Site Scripting Vulnerability
+ http://secunia.com/advisories/50608/
+ XSS
+
+
+
+
+
+ Wordpress Token Manager Plugin "tid" Cross-Site Scripting Vulnerabilities
+ http://secunia.com/advisories/50722/
+ XSS
+
+
+
+
+
+ WordPress Sexy Add Template Plugin Cross-Site Request Forgery Vulnerability
+ http://secunia.com/advisories/50709/
+ CSRF
+
+
+
+
+
+ WordPress Notices Ticker Plugin Cross-Site Request Forgery Vulnerability
+ http://secunia.com/advisories/50717/
+ CSRF
+
+
+
+
+
+ WordPress MF Gig Calendar Plugin URL Cross-Site Scripting Vulnerability
+ http://secunia.com/advisories/50571/
+ XSS
+
+
+
+
+
+ WordPress WP-TopBar Plugin < 4.0.3 Cross-Site Request Forgery Vulnerability
+ http://secunia.com/advisories/50693/
+ CSRF
+
+
+
diff --git a/data/theme_vulns.xml b/data/theme_vulns.xml
index 4852838f..cd8ec37d 100644
--- a/data/theme_vulns.xml
+++ b/data/theme_vulns.xml
@@ -1194,4 +1194,20 @@
+
+
+ WordPress Archin Theme Cross-Site Scripting and Arbitrary File Upload Vulnerabilities
+ http://secunia.com/advisories/50711/
+ MULTI
+
+
+
+
+
+ WordPress Purity Theme Multiple Cross-Site Scripting Vulnerabilities
+ http://secunia.com/advisories/50627/
+ XSS
+
+
+