Update vuln db

2014-04-14 14:19:43 +02:00
parent 5134516afc
commit cdeb2eebe5
1 changed files with 25 additions and 11 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -3916,7 +3916,7 @@
    </vulnerability>
  </plugin>

- <plugin name="flash-album-gallery">
+  <plugin name="flash-album-gallery">
    <vulnerability>
      <title>SWF Vulnerable to XSS Bundled in Many WordPress Plugins</title>
      <references>
@@ -6555,6 +6555,16 @@
  </plugin>

  <plugin name="woocommerce">
+    <vulnerability>
+      <title>WooCommerce 2.0.17 - hide-wc-extensions-message Parameter Reflected XSS</title>
+      <references>
+        <osvdb>98754</osvdb>
+        <url>http://packetstormsecurity.com/files/123684/</url>
+        <url>http://www.securityfocus.com/bid/63228</url>
+      </references>
+      <type>XSS</type>
+      <fixed_in>2.0.17</fixed_in>
+    </vulnerability>
    <vulnerability>
      <title>WooCommerce 2.0.12 - index.php calc_shipping_state Parameter XSS</title>
      <references>
@@ -6565,15 +6575,6 @@
      <type>XSS</type>
      <fixed_in>2.0.13</fixed_in>
    </vulnerability>
-    <vulnerability>
-      <title>WooCommerce 2.0.17 - hide-wc-extensions-message Parameter Reflected XSS</title>
-      <references>
-        <osvdb>98754</osvdb>
-        <url>http://packetstormsecurity.com/files/123684/</url>
-        <url>http://www.securityfocus.com/bid/63228</url>
-      </references>
-      <type>XSS</type>
-    </vulnerability>
  </plugin>

  <plugin name="wp-e-commerce-predictive-search">
@@ -10643,7 +10644,7 @@
    </vulnerability>
  </plugin>

-   <plugin name="easy-career-openings">
+  <plugin name="easy-career-openings">
    <vulnerability>
      <title>Easy Career Openings - jobid Parameter SQL Injection</title>
      <references>
@@ -12287,4 +12288,17 @@
    </vulnerability>
  </plugin>

+  <plugin name="post-views">
+    <vulnerability>
+      <title>Post views 2.6.1 - wp-content/plugins/post-views/post-views.php search_input Parameter XSS</title>
+      <references>
+        <osvdb>87349</osvdb>
+        <secunia>50982</secunia>
+        <url>http://www.securityfocus.com/bid/56555</url>
+        <url>http://xforce.iss.net/xforce/xfdb/80076</url>
+      </references>
+      <type>XSS</type>
+    </vulnerability>
+  </plugin>
+
 </vulnerabilities>