From b8bdd7467be92569f4c51638fa1782565a319a81 Mon Sep 17 00:00:00 2001 From: Christian Mehlmauer Date: Thu, 7 Feb 2013 23:35:08 +0100 Subject: [PATCH] added vulns --- data/plugin_vulns.xml | 25 ++++++++++++++++++++++++- 1 file changed, 24 insertions(+), 1 deletion(-) diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml index 4d5d2f54..0f42d0a6 100644 --- a/data/plugin_vulns.xml +++ b/data/plugin_vulns.xml @@ -3320,6 +3320,9 @@ SQL Injection Vulnerability in Wysija Newsletters WordPress Plugin < 2.2.1 https://www.htbridge.com/advisory/HTB23140 + http://packetstormsecurity.com/files/120089/wpwysijanl-sql.txt + http://seclists.org/bugtraq/2013/Feb/29 + http://cxsecurity.com/issue/WLB-2013020039 SQLI @@ -3632,6 +3635,7 @@ Wordpress wp-table-reloaded plugin < 1.9.4 cross-site scripting in SWF http://packetstormsecurity.com/files/119968/wptablereloaded-xss.txt http://secunia.com/advisories/52027/ + http://seclists.org/bugtraq/2013/Feb/28 XSS @@ -3662,8 +3666,11 @@ - Cross-Site Scripting (XSS) Vulnerability in CommentLuv WordPress Plugin + Cross-Site Scripting (XSS) Vulnerability in CommentLuv WordPress Plugin < 2.92.4 https://www.htbridge.com/advisory/HTB23138 + http://packetstormsecurity.com/files/120090/wpcommentluv-xss.txt + http://seclists.org/bugtraq/2013/Feb/30 + http://cxsecurity.com/issue/WLB-2013020040 XSS @@ -3676,4 +3683,20 @@ + + + WordPress WP ecommerce Shop Styling Plugin < 1.8 "dompdf" Remote File Inclusion Vulnerability + http://secunia.com/advisories/51707/ + RFI + + + + + + Wordpress Audio Player Plugin < 2.0.4.6 XSS in SWF + http://seclists.org/bugtraq/2013/Feb/35 + XSS + + +