CVE-2007-5442
CMS Made Simple 1.1.3.1 does not check the permissions assigned to users who attempt uploads, which allows remote authenticated users to upload unspecified files via unknown vectors.
Date published : 2007-10-14
http://www.securityfocus.com/archive/1/481984/100/0/threaded