added advanced-xml-reader, Issue #191

2013-05-19 12:25:08 +02:00
parent 47df347b69
commit c217cd7c64
2 changed files with 9 additions and 0 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -4418,5 +4418,13 @@
      <type>CSRF</type>
    </vulnerability>
  </plugin>
+  
+  <plugin name="advanced-xml-reader">
+    <vulnerability>
+      <title>Advanced XML Reader Plugin for WordPress XML External Entity (XXE) Data Parsing Arbitrary File Disclosure</title>
+      <reference>http://osvdb.org/92904</reference>
+      <type>XXE</type>
+    </vulnerability>
+  </plugin>

 </vulnerabilities>
--- a/data/vuln.xsd
+++ b/data/vuln.xsd
@@ -28,6 +28,7 @@
      <xs:enumeration value="CSRF"/>
      <xs:enumeration value="AUTHBYPASS"/>
      <xs:enumeration value="FPD"/>
+      <xs:enumeration value="XXE"/>
    </xs:restriction>
  </xs:simpleType>