Add new disqus RCE vuln

2014-06-25 11:25:41 +02:00
parent 1ca2f28187
commit e74b1d2210
1 changed files with 8 additions and 0 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -3493,6 +3493,14 @@
  </plugin>

  <plugin name="disqus-comment-system">
+    <vulnerability>
+      <title>Remote Code Execution Vuln in Disqus</title>
+      <references>
+        <url>http://blog.sucuri.net/2014/06/anatomy-of-a-remote-code-execution-bug-on-disqus.html</url>
+      </references>
+      <type>RCE</type>
+      <fixed_in>2.76</fixed_in>
+    </vulnerability>
    <vulnerability>
      <title>Disqus Comment System &lt;= 2.68 - Reflected Cross-Site Scripting (XSS)</title>
      <references>