diff --git a/data/plugin_vulns.xml b/data/plugin_vulns.xml
index 3f6a260b..462e22ad 100644
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -4137,9 +4137,12 @@
- ofc_upload_image.php Arbitrary File Upload Vulnerability
+ ofc_upload_image.php < 0.5 Arbitrary File Upload Vulnerability
http://www.exploit-db.com/exploits/24492/
+ http://secunia.com/advisories/37903
+ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4140
UPLOAD
+
@@ -4225,11 +4228,102 @@
- social-media-widget < 4.0.1 malicious code
+ social-media-widget < 4.0.2 malicious code
http://plugins.trac.wordpress.org/changeset?reponame=&old=691839%40social-media-widget%2Ftrunk&new=693941%40social-media-widget%2Ftrunk
http://slashdot.org/submission/2592777/top-wordpress-widget-sold-off-turned-into-seo-spambot
UNKNOWN
+
+
+ facebook-members < 5.0.5 CSRF
+ https://secunia.com/advisories/52962/
+ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2703
+ CSRF
+
+
+
+
+
+
+ foursquare-checkins < 1.3 CSRF
+ https://secunia.com/advisories/53151/
+ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2709
+ CSRF
+
+
+
+
+
+
+ formidable Pro < 1.06.09 Unspecified Vulnerabilities
+ https://secunia.com/advisories/53121/
+ UNKNOWN
+
+
+
+
+
+
+ all-in-one-webmaster < 8.2.4 CSRF
+ https://secunia.com/advisories/52877/
+ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2696
+ CSRF
+
+
+
+
+
+
+ background-music 1.0 jPlayer.swf XSS
+ https://secunia.com/advisories/53057/
+ XSS
+
+
+
+
+
+ haiku-minimalist-audio-player <= 1.0.0 jPlayer.swf XSS
+ https://secunia.com/advisories/51336/
+ XSS
+
+
+
+
+
+ jammer <= 0.2 jPlayer.swf XSS
+ https://secunia.com/advisories/53106/
+ XSS
+
+
+
+
+
+ syntaxhighlighter < 3.1.6 clipboard.swf XSS
+ https://secunia.com/advisories/53235/
+ XSS
+
+
+
+
+
+
+ top-10 < 1.9.3 CSRF
+ https://secunia.com/advisories/53205/
+ CSRF
+
+
+
+
+
+
+ easy-adsense-lite < 6.20 CSRF
+ https://secunia.com/advisories/52953/
+ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2702
+ CSRF
+
+
+
+