freewvsdb/plugins.json (5235ffe) - freewvs.git

master

add json db Hanno Böck authored 4 years ago	1) [ 2) { 3) "name": "Serendipity-mycalendar", 4) "url": "https://s9y.org", 5) "safe": "0.13", 6) "vuln": "CVE-2007-6390", 7) "detection": [ 8) { 9) "file": "serendipity_event_mycalendar.php", 10) "variable": "$propbag->add('version'", 11) "subdir": 0 12) } 13) ] 14) }, 15) { 16) "name": "Serendipity-freetag", 17) "url": "https://s9y.org", 18) "safe": "3.69", 19) "vuln": "https://github.com/s9y/additional_plugins/commit/3edecdb7eccc24e0d5c63a3d5702dba54599bda3", 20) "detection": [ 21) { 22) "file": "serendipity_event_freetag.php", 23) "variable": "$propbag->add('version'", 24) "subdir": 0 25) } 26) ] 27) }, 28) { 29) "name": "SquirrelMail-gpg", 30) "url": "https://squirrelmail.org/plugin_view.php?id=153", 31) "safe": "2.1", 32) "vuln": "CVE-2007-3779", 33) "detection": [ 34) { 35) "file": "gpg_pref_functions.php", 36) "variable": "$GPG_VERSION", 37) "subdir": 0 38) } 39) ] 40) }, 41) { 42) "name": "Drupal-Views", 43) "url": "https://www.drupal.org/project/views", 44) "safe": "2.13", 45) "vuln": "CVE-2011-4113", 46) "detection": [ 47) { 48) "file": "views.info", 49) "variable": "version = \"6.x", 50) "subdir": 0 51) } 52) ] 53) }, 54) { 55) "name": "Wordpress-timthumb", 56) "url": "https://github.com/GabrielGil/TimThumb", 57) "safe": "2.8.14", 58) "vuln": "CVE-2014-4663", 59) "detection": [ 60) { 61) "file": "timthumb.php", 62) "variable": "('VERSION',", 63) "subdir": 0, 64) "extra_match": "TimThumb" 65) } 66) ] 67) }, 68) { 69) "name": "Wordpress-timthumb-renamed", 70) "url": "https://github.com/GabrielGil/TimThumb", 71) "safe": "2.8.14", 72) "vuln": "CVE-2014-4663", 73) "detection": [ 74) { 75) "file": "thumb.php", 76) "variable": "('VERSION',", 77) "subdir": 0, 78) "extra_match": "TimThumb" 79) } 80) ] 81) }, 82) { 83) "name": "Joomla-JCE", 84) "url": "https://www.joomlacontenteditor.net/", 85) "safe": "2.1", 86) "vuln": "CVE-2012-2902", 87) "detection": [ 88) { 89) "file": "editor.php", 90) "variable": "$_version", 91) "subdir": 3, 92) "extra_match": "JCE class" 93) } 94) ] 95) }, 96) { 97) "name": "WP Super Cache", 98) "url": "https://wordpress.org/plugins/wp-super-cache/",
wp super cache update Hanno Böck authored 2 years ago	`99) "safe": "1.7.3", 100) "vuln": "CVE-2021-24329", 101) "latest": "1.7.3",`
add json db Hanno Böck authored 4 years ago	`102) "detection": [ 103) { 104) "file": "wp-cache.php", 105) "variable": "Version:", 106) "subdir": 0, 107) "extra_match": "Plugin Name: WP Super Cache" 108) } 109) ] 110) }, 111) { 112) "name": "W3 Total Cache", 113) "url": "https://wordpress.org/plugins/w3-total-cache/",`
update w3 total cache Hanno Böck authored 2 years ago	`114) "safe": "2.1.3", 115) "vuln": "https://wordpress.org/plugins/w3-total-cache/#developers",`
add json db Hanno Böck authored 4 years ago	116) "detection": [ 117) { 118) "file": "w3-total-cache.php", 119) "variable": "Version:", 120) "subdir": 0, 121) "extra_match": "Plugin Name: W3 Total Cache" 122) } 123) ] 124) }, 125) { 126) "name": "phpThumb", 127) "url": "http://phpthumb.sourceforge.net/", 128) "safe": "1.7.10", 129) "vuln": "CVE-2010-1598", 130) "detection": [ 131) { 132) "file": "phpthumb.class.php", 133) "variable": "$phpthumb_version", 134) "subdir": 0 135) } 136) ] 137) }, 138) { 139) "name": "Wordpress-Jetpack", 140) "url": "https://jetpack.com/",
update jetpack Hanno Böck authored 10 months ago	`141) "safe": "12.1.1", 142) "old_safe": "12.0.1,11.9.2,11.8.5,11.7.2,11.6.1,11.5.2,11.4.1,11.3.3,11.2.1,11.1.3,11.0.1,10.9.2,10.8.1,10.7.1,10.6.2", 143) "vuln": "https://jetpack.com/blog/jetpack-12-1-1-critical-security-update/",`
add json db Hanno Böck authored 4 years ago	144) "detection": [ 145) { 146) "file": "jetpack.php", 147) "variable": "JETPACK__VERSION", 148) "subdir": 0 149) } 150) ] 151) }, 152) { 153) "name": "Wordpress-MailPoet", 154) "url": "https://www.mailpoet.com/", 155) "safe": "2.6.8", 156) "vuln": "CVE-2014-4726", 157) "detection": [ 158) { 159) "file": "base.php", 160) "variable": "static $version", 161) "subdir": 0, 162) "extra_match": "WYSIJA_object" 163) } 164) ] 165) }, 166) { 167) "name": "Wordpress-CustomContact", 168) "url": "https://wordpress.org/plugins/custom-contact-forms/", 169) "safe": "5.1.0.4",
update various URLs to http... Hanno Böck authored 4 years ago	`170) "vuln": "https://blog.sucuri.net/2014/08/database-takeover-in-custom-contact-forms.html",`
add json db Hanno Böck authored 4 years ago	171) "detection": [ 172) { 173) "file": "custom-contact-forms.php", 174) "variable": "Version", 175) "subdir": 0 176) } 177) ] 178) }, 179) { 180) "name": "Wordpress-SliderRevolution", 181) "url": "https://revolution.themepunch.com/", 182) "safe": "4.2.3", 183) "vuln": "CVE-2015-5151", 184) "note": "unclear about exact version", 185) "detection": [ 186) { 187) "file": "revslider.php", 188) "variable": "$revSliderVersion", 189) "subdir": 0 190) } 191) ] 192) }, 193) { 194) "name": "Wordpress-NextGEN", 195) "url": "https://wordpress.org/plugins/nextgen-gallery/",
update wp plugins Hanno Böck authored 2 years ago	`196) "safe": "3.5.0", 197) "vuln": "CVE-2020-35942",`
add json db Hanno Böck authored 4 years ago	198) "detection": [ 199) { 200) "file": "nggallery.php", 201) "variable": "NGG_PLUGIN_VERSION", 202) "subdir": 0 203) } 204) ] 205) }, 206) { 207) "name": "Wordpress-Akismet", 208) "url": "https://wordpress.org/plugins/akismet/", 209) "safe": "3.1.5", 210) "vuln": "CVE-2015-9357", 211) "detection": [ 212) { 213) "file": "akismet.php", 214) "variable": "AKISMET_VERSION", 215) "subdir": 0 216) } 217) ] 218) }, 219) { 220) "name": "Wordpress-AllInOneSEO", 221) "url": "https://semperplugins.com/all-in-one-seo-pack-changelog/", 222) "safe": "3.2.7", 223) "vuln": "CVE-2019-16520", 224) "detection": [ 225) { 226) "file": "all_in_one_seo_pack.php", 227) "variable": "define( 'AIOSEOP_VERSION'", 228) "subdir": 0 229) } 230) ] 231) }, 232) { 233) "name": "Wordpress-DownloadManager", 234) "url": "https://wordpress.org/plugins/download-manager/",
wordpress downloadmanager u... Hanno Böck authored 3 years ago	`235) "safe": "3.1.07", 236) "vuln": "https://de.wordpress.org/plugins/download-manager/#developers",`
add json db Hanno Böck authored 4 years ago	237) "detection": [ 238) { 239) "file": "download-manager.php", 240) "variable": "define('WPDM_Version'", 241) "subdir": 0 242) } 243) ] 244) }, 245) { 246) "name": "Wordpress-Fancybox", 247) "url": "https://wordpress.org/plugins/fancybox-for-wordpress/", 248) "safe": "3.0.4", 249) "vuln": "CVE-2015-1494", 250) "detection": [ 251) { 252) "file": "fancybox.php", 253) "variable": "FBFW_VERSION", 254) "subdir": 0 255) } 256) ] 257) }, 258) { 259) "name": "Joomla-Googlemaps", 260) "url": "http://joomlacode.org/gf/project/mambot_google1/", 261) "safe": "3.1",
update various URLs to http... Hanno Böck authored 4 years ago	`262) "vuln": "CVE-2013-7428",`
add json db Hanno Böck authored 4 years ago	263) "detection": [ 264) { 265) "file": "plugin_googlemap3.perm", 266) "variable": "<version>", 267) "subdir": 0 268) } 269) ] 270) }, 271) { 272) "name": "Wordpress-SEObyYoast", 273) "url": "https://wordpress.org/plugins/wordpress-seo/", 274) "safe": "11.6.0", 275) "vuln": "CVE-2019-13478", 276) "detection": [ 277) { 278) "file": "wp-seo-main.php", 279) "variable": "WPSEO_VERSION", 280) "subdir": 0 281) } 282) ] 283) }, 284) { 285) "name": "Wordpress-GoogleAnalyticsbyMonsterInsights", 286) "url": "https://wordpress.org/plugins/google-analytics-for-wordpress/changelog/",
update and add some wordpre... Hanno Böck authored 4 years ago	`287) "safe": "7.2.0", 288) "vuln": "https://wpvulndb.com/vulnerabilities/9157/",`
add json db Hanno Böck authored 4 years ago	`289) "detection": [ 290) { 291) "file": "googleanalytics.php", 292) "variable": "GAWP_VERSION", 293) "subdir": 0 294) } 295) ] 296) }, 297) { 298) "name": "Wordpress-Captcha", 299) "url": "https://wordpress.org/plugins/captcha/", 300) "safe": "4.4.5", 301) "vuln": "https://www.wordfence.com/blog/2017/12/backdoor-captcha-plugin/", 302) "detection": [ 303) { 304) "file": "captcha.php", 305) "variable": "Version:", 306) "subdir": 0 307) } 308) ]`
update and add some wordpre... Hanno Böck authored 4 years ago	`309) }, 310) { 311) "name": "Wordpress-ContactForm7", 312) "url": "https://contactform7.com/",`
contactform7 update Hanno Böck authored 3 years ago	`313) "safe": "5.3.2", 314) "vuln": "CVE-2020-35489",`
update and add some wordpre... Hanno Böck authored 4 years ago	`315) "detection": [ 316) { 317) "file": "wp-contact-form-7.php", 318) "variable": "WPCF7_VERSION", 319) "subdir": 0 320) } 321) ] 322) }, 323) { 324) "name": "Wordpress-ACF", 325) "url": "https://www.advancedcustomfields.com/",`
update for wordpress-acf Hanno Böck authored 7 months ago	`326) "safe": "6.1.8", 327) "old_safe": "5.12.6", 328) "vuln": "https://www.advancedcustomfields.com/blog/acf-6-1-8/",`
update and add some wordpre... Hanno Böck authored 4 years ago	`329) "detection": [ 330) { 331) "file": "acf.php",`
make acf detect pro and fre... Hanno Böck authored 4 years ago	`332) "variable": "Version:",`
update and add some wordpre... Hanno Böck authored 4 years ago	`333) "extra_match": "Advanced Custom Fields", 334) "subdir": 0 335) } 336) ] 337) }, 338) { 339) "name": "Wordpress-Updraftplus", 340) "url": "https://updraftplus.com/",`
update for wordpress-updraf... Hanno Böck authored 7 months ago	`341) "safe": "1.23.4", 342) "vuln": "CVE-2023-32960",`
update and add some wordpre... Hanno Böck authored 4 years ago	`343) "detection": [ 344) { 345) "file": "updraftplus.php", 346) "variable": "Version:", 347) "subdir": 0 348) } 349) ] 350) }, 351) { 352) "name": "Wordpress-GoogleXMLSitemaps",`
don't use localized wordpre... Hanno Böck authored 4 years ago	`353) "url": "https://wordpress.org/plugins/google-sitemap-generator/",`
update googlexmlsitemaps pl... Hanno Böck authored 2 years ago	`354) "safe": "4.1.1", 355) "vuln": "https://wordpress.org/plugins/google-sitemap-generator/#developers",`
update and add some wordpre... Hanno Böck authored 4 years ago	`356) "detection": [ 357) { 358) "file": "sitemap.php", 359) "variable": "Version:", 360) "extra_match": "Google XML Sitemaps Generator for WordPress", 361) "subdir": 0 362) } 363) ]`
add wp-duplicatepost Hanno Böck authored 4 years ago	`364) }, 365) { 366) "name": "Wordpress-DuplicatePost", 367) "url": "https://wordpress.org/plugins/duplicate-post/", 368) "safe": "3.2.4", 369) "vuln": "https://packetstormsecurity.com/files/154622/Duplicate-Post-3.2.3-Cross-Site-Scripting.html", 370) "detection": [ 371) { 372) "file": "duplicate-post.php", 373) "variable": "DUPLICATE_POST_CURRENT_VERSION", 374) "subdir": 0 375) } 376) ]`
add themegrill Hanno Böck authored 4 years ago	`377) }, 378) { 379) "name": "Wordpress-ThemegrillDemoImporter", 380) "url": "https://wordpress.org/plugins/themegrill-demo-importer/", 381) "safe": "1.6.3", 382) "vuln": "https://www.openwall.com/lists/oss-security/2020/02/19/1", 383) "detection": [ 384) { 385) "file": "class-themegrill-demo-importer.php", 386) "variable": "$version", 387) "subdir": 1 388) } 389) ]`
add woocommerce Hanno Böck authored 4 years ago	`390) }, 391) { 392) "name": "Wordpress-WooCommerce", 393) "url": "https://woocommerce.com/", 394) "safe": "3.9.2", 395) "vuln": "https://woocommerce.wordpress.com/2020/02/13/woocommerce-3-9-2-security-release/", 396) "detection": [ 397) { 398) "file": "woocommerce.php", 399) "variable": "Version:", 400) "subdir": 0 401) } 402) ]`
add allinonewpmigration Hanno Böck authored 4 years ago	`403) }, 404) { 405) "name": "Wordpress-AllinoneWPMigration", 406) "url": "https://wordpress.org/plugins/all-in-one-wp-migration/",`
Update wordpress all-in-One... Hanno Böck authored 7 months ago	`407) "safe": "7.41", 408) "vuln": "CVE-2021-24216",`
add allinonewpmigration Hanno Böck authored 4 years ago	`409) "detection": [ 410) { 411) "file": "constants.php", 412) "variable": "AI1WM_VERSION", 413) "subdir": 0 414) } 415) ]`
add rank math Hanno Böck authored 4 years ago	`416) }, 417) { 418) "name": "Wordpress-SEO-by-Rank-Math", 419) "url": "https://rankmath.com/", 420) "safe": "1.0.41", 421) "vuln": "https://www.wordfence.com/blog/2020/03/critical-vulnerabilities-affecting-over-200000-sites-patched-in-rank-math-seo-plugin/", 422) "detection": [ 423) { 424) "file": "rank-math.php", 425) "variable": "$version", 426) "subdir": 0 427) } 428) ]`
add bbpress Hanno Böck authored 3 years ago	`429) }, 430) { 431) "name": "bbPress", 432) "url": "https://bbpress.org/", 433) "safe": "2.6.5", 434) "vuln": "CVE-2020-13693", 435) "detection": [ 436) { 437) "file": "bbpress.php", 438) "variable": "$this->version", 439) "subdir": 0 440) } 441) ]`
add wordpress file manager Hanno Böck authored 3 years ago	`442) }, 443) { 444) "name": "Wordpress-File-Manager", 445) "url": "https://wordpress.org/plugins/wp-file-manager/", 446) "safe": "6.9", 447) "vuln": "https://seravo.com/blog/0-day-vulnerability-in-wp-file-manager/", 448) "detection": [ 449) { 450) "file": "file_folder_manager.php", 451) "variable": "$ver", 452) "subdir": 0 453) } 454) ]`
add roundcube carddav plugin Hanno Böck authored 3 years ago	455) }, 456) { 457) "name": "Roundcube-RCMCardDAV", 458) "url": "https://github.com/mstilkerich/rcmcarddav", 459) "safe": "4.0.0", 460) "vuln": "https://github.com/mstilkerich/rcmcarddav/releases/tag/v4.0.0-alpha1", 461) "detection": [ 462) { 463) "file": "carddav.php", 464) "variable": "const PLUGIN_VERSION", 465) "subdir": 0, 466) "note": "4.0.0 and above" 467) }, 468) { 469) "file": "carddav_common.php", 470) "variable": "RCM CardDAV plugin/", 471) "subdir": 0, 472) "note": "3.x" 473) } 474) ]
add json db Hanno Böck authored 4 years ago	`475) }`