RSS   Vulnerabilities for 'SIRE'   RSS

2006-04-11
 
CVE-2006-1704

CWE-Other
 

 
Sire 2.0 nws allows remote attackers to upload arbitrary image files without authentication via a direct request to upload.php.

 
 
CVE-2006-1703

CWE-Other
 

 
PHP remote file inclusion vulnerability in lire.php in Sire 2.0 nws allows remote attackers to execute arbitrary PHP code via a URL in the rub parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top