From c217cd7c648eb56d62c4f3c8b13dcf93546cabf8 Mon Sep 17 00:00:00 2001
From: Christian Mehlmauer <firefart@gmail.com>
Date: Sun, 19 May 2013 12:25:08 +0200
Subject: [PATCH] added advanced-xml-reader, Issue #191

---
 data/plugin_vulns.xml | 8 ++++++++
 data/vuln.xsd         | 1 +
 2 files changed, 9 insertions(+)

diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 8de63d0d..6fb50d06 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -4418,5 +4418,13 @@
       <type>CSRF</type>
     </vulnerability>
   </plugin>
+  
+  <plugin name="advanced-xml-reader">
+    <vulnerability>
+      <title>Advanced XML Reader Plugin for WordPress XML External Entity (XXE) Data Parsing Arbitrary File Disclosure</title>
+      <reference>http://osvdb.org/92904</reference>
+      <type>XXE</type>
+    </vulnerability>
+  </plugin>
 
 </vulnerabilities>
diff --git a/data/vuln.xsd b/data/vuln.xsd
index b368e72a..146d2a7c 100644
--- a/data/vuln.xsd
+++ b/data/vuln.xsd
@@ -28,6 +28,7 @@
       <xs:enumeration value="CSRF"/>
       <xs:enumeration value="AUTHBYPASS"/>
       <xs:enumeration value="FPD"/>
+      <xs:enumeration value="XXE"/>
     </xs:restriction>
   </xs:simpleType>