Added CVE-2014-4937 and CVE-2014-4938. Update #572

data/plugin_vulns.xml

@@ -13621,4 +13621,17 @@
     </vulnerability>
   </plugin>
 
+  <plugin name="bookx">
+    <vulnerability>
+      <title>BookX 1.7 - includes/bookx_export.php file Parameter Remote Path Traversal File Access</title>
+      <references>
+        <osvdb>109022</osvdb>
+        <cve>2014-4937</cve>
+        <url>http://www.securityfocus.com/bid/68556</url>
+        <url>http://codevigilant.com/disclosure/wp-plugin-bookx-local-file-inclusion/</url>
+      </references>
+      <type>LFI</type>
+    </vulnerability>
+  </plugin>
+
 </vulnerabilities>