garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix #189 VideoJS XSS in Themes

Browse Source
This commit is contained in:
erwanlr
2013-06-15 15:36:04 +02:00
parent 3363006a83
commit db6a0aa584
1 changed files with 53 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

53
data/theme_vulns.xml
View File

@@ -3,6 +3,59 @@
<vulnerabilities xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" <vulnerabilities xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="vuln.xsd"> xsi:noNamespaceSchemaLocation="vuln.xsd">
<theme name="crius">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://secunia.com/advisories/53427/</reference>
<reference>http://seclists.org/fulldisclosure/2013/May/77</reference>
<type>XSS</type>
</vulnerability>
</theme>
<theme name="source">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://secunia.com/advisories/53457/</reference>
<reference>http://seclists.org/fulldisclosure/2013/May/77</reference>
<type>XSS</type>
</vulnerability>
</theme>
<theme name="i-love-it">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://secunia.com/advisories/53548/</reference>
<reference>http://seclists.org/fulldisclosure/2013/May/77</reference>
<type>XSS</type>
</vulnerability>
</theme>
<theme name="smartstart">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://secunia.com/advisories/53460/</reference>
<reference>http://seclists.org/fulldisclosure/2013/May/77</reference>
<type>XSS</type>
</vulnerability>
</theme>
<theme name="covertvideopress">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://secunia.com/advisories/53494/</reference>
<reference>http://seclists.org/fulldisclosure/2013/May/77</reference>
<type>XSS</type>
</vulnerability>
</theme>
<theme name="photolio">
<vulnerability>
<title>VideoJS Cross-Site Scripting Vulnerability</title>
<reference>http://seclists.org/fulldisclosure/2013/May/77</reference>
<type>XSS</type>
</vulnerability>
</theme>
<theme name="onepagewebsite"> <theme name="onepagewebsite">
<vulnerability> <vulnerability>
<title>onepagewebsite Full Path Disclosure vulnerability</title> <title>onepagewebsite Full Path Disclosure vulnerability</title>