2006-04-11 10:00:00
mitre
PUBLISHED
Sire 2.0 nws allows remote attackers to upload arbitrary image files without authentication via a direct request to upload.php.