garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update plugin_vulns.xml

Browse Source
This commit is contained in:
Peter van der Laan
2013-11-05 20:19:41 +01:00
parent ce6881fdc7
commit cfc53f67f9
1 changed files with 26 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

37
data/plugin_vulns.xml
View File

@@ -4612,13 +4612,11 @@
<plugin name="wp-super-cache"> <plugin name="wp-super-cache">
<vulnerability> <vulnerability>
<title>WP-Super-Cache - Remote Code Execution</title> <title>WP-Super-Cache 1.3 - Remote Code Execution</title>
<references> <references>
<url>http://www.acunetix.com/blog/web-security-zone/wp-plugins-remote-code-execution/</url> <url>http://www.acunetix.com/blog/web-security-zone/wp-plugins-remote-code-execution/</url>
<url>http://wordpress.org/support/topic/pwn3d</url> <url>http://wordpress.org/support/topic/pwn3d</url>
<url> <url>http://blog.sucuri.net/2013/04/update-wp-super-cache-and-w3tc-immediately-remote-code-execution-vulnerability-disclosed.html</url>
http://blog.sucuri.net/2013/04/update-wp-super-cache-and-w3tc-immediately-remote-code-execution-vulnerability-disclosed.html
</url>
</references> </references>
<type>RCE</type> <type>RCE</type>
<fixed_in>1.3.1</fixed_in> <fixed_in>1.3.1</fixed_in>
@@ -6308,8 +6306,10 @@
<plugin name="related-posts-by-zemanta"> <plugin name="related-posts-by-zemanta">
<vulnerability> <vulnerability>
<title>Related Posts by Zemanta - Cross-Site Request Forgery Vulnerability</title> <title>Related Posts by Zemanta 1.3.1 - Cross-Site Request Forgery Vulnerability</title>
<references> <references>
<osvdb>93364</osvdb>
<cve>2013-3477</cve>
<secunia>53321</secunia> <secunia>53321</secunia>
</references> </references>
<type>CSRF</type> <type>CSRF</type>
@@ -6319,19 +6319,22 @@
<plugin name="wordpress-23-related-posts-plugin"> <plugin name="wordpress-23-related-posts-plugin">
<vulnerability> <vulnerability>
<title>WordPress Related Posts - Cross-Site Request Forgery Vulnerability</title> <title>WordPress Related Posts 2.6.1 - Cross-Site Request Forgery Vulnerability</title>
<references> <references>
<osvdb>93362</osvdb>
<cve>2013-3476</cve>
<secunia>53279</secunia> <secunia>53279</secunia>
</references> </references>
<type>CSRF</type> <type>CSRF</type>
<fixed_in>2.6.2</fixed_in> <fixed_in>2.7.2</fixed_in>
</vulnerability> </vulnerability>
</plugin> </plugin>
<plugin name="related-posts"> <plugin name="related-posts">
<vulnerability> <vulnerability>
<title>Related Posts - Cross-Site Request Forgery Vulnerability</title> <title>Related Posts 2.7.1 - Cross-Site Request Forgery Vulnerability</title>
<references> <references>
<osvdb>93363</osvdb>
<secunia>53122</secunia> <secunia>53122</secunia>
</references> </references>
<type>CSRF</type> <type>CSRF</type>
@@ -6444,12 +6447,14 @@
<plugin name="funcaptcha"> <plugin name="funcaptcha">
<vulnerability> <vulnerability>
<title>FunCaptcha - CSRF</title> <title>FunCaptcha 0.3.2- Setting Manipulation CSRF</title>
<references> <references>
<osvdb>92272</osvdb>
<secunia>53021</secunia>
<url>http://wordpress.org/extend/plugins/funcaptcha/changelog/</url> <url>http://wordpress.org/extend/plugins/funcaptcha/changelog/</url>
</references> </references>
<type>UNKNOWN</type> <type>CSRF</type>
<fixed_in>0.33</fixed_in> <fixed_in>0.3.3</fixed_in>
</vulnerability> </vulnerability>
</plugin> </plugin>
@@ -7892,4 +7897,14 @@
</vulnerability> </vulnerability>
</plugin> </plugin>
<plugin name="live-comment-preview">
<vulnerability>
<title>Live Comment Preview 2.0.2 - Comment Field Preview XSS</title>
<references>
<osvdb>92944</osvdb>
</references>
<type>XSS</type>
</vulnerability>
</plugin>
</vulnerabilities> </vulnerabilities>