garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update vuln db

Browse Source
This commit is contained in:
Peter
2014-03-29 21:53:03 +01:00
parent 10fee6e144
commit f01b0b3404
2 changed files with 114 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
data/wp_vulns.xml
View File

@@ -1658,6 +1658,7 @@
<vulnerability>
<title>wp-includes/comment.php bypass intended spam restrictions via a crafted URL</title>
<references>
<osvdb>104693</osvdb>
<cve>2010-5293</cve>
</references>
<type>UNKNOWN</type>
@@ -1792,10 +1793,11 @@
<vulnerability>
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
<references>
<osvdb>104691</osvdb>
<cve>2010-5297</cve>
</references>
<type>AUTHBYPASS</type>
<fixed_in>3.0</fixed_in>
<fixed_in>3.0.1</fixed_in>
</vulnerability>
<vulnerability>
<title>Crafted String URL Redirect Restriction Bypass</title>
@@ -1838,6 +1840,7 @@
<vulnerability>
<title>wp-includes/comment.php bypass intended spam restrictions via a crafted URL</title>
<references>
<osvdb>104693</osvdb>
<cve>2010-5293</cve>
</references>
<type>UNKNOWN</type>