CVE-2006-1704
Sire 2.0 nws allows remote attackers to upload arbitrary image files without authentication via a direct request to upload.php.
Date published : 2006-04-11
http://www.securityfocus.com/bid/17431
http://www.securityfocus.com/archive/1/430301/100/0/threaded