Added wp-html-sitemap and gd-star-rating plugin vulns

2014-03-28 18:32:57 +01:00
parent d21e475d12
commit fd3c4261de
1 changed files with 18 additions and 0 deletions
--- a/data/plugin_vulns.xml
+++ b/data/plugin_vulns.xml
@@ -5759,6 +5759,13 @@
  </plugin>

  <plugin name="gd-star-rating">
+    <vulnerability>
+      <title>XSS, CSRF and blind SQL injection in GD Star Rating 1.9.22</title>
+      <references>
+        <url>https://security.dxw.com/advisories/xss-csrf-and-blind-sql-injection-in-gd-star-rating-1-9-22/</url>
+      </references>
+      <type>MULTI</type>
+    </vulnerability>
    <vulnerability>
      <title>GD Star Rating - Export Security Bypass Security Issue</title>
      <references>
@@ -11806,4 +11813,15 @@
    </vulnerability>
  </plugin>

+  <plugin name="wp-html-sitemap">
+    <vulnerability>
+      <title>CSRF vulnerability in WP HTML Sitemap 1.2</title>
+      <references>
+        <url>https://security.dxw.com/advisories/csrf-vulnerability-in-wp-html-sitemap-1-2/</url>
+      </references>
+      <type>CSRF</type>
+    </vulnerability>
+  </plugin>
+
+
 </vulnerabilities>