Vulnerability Details CVE-2006-1704
Sire 2.0 nws allows remote attackers to upload arbitrary image files without authentication via a direct request to upload.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.038
EPSS Ranking 87.6%
CVSS Severity
CVSS v2 Score 5.0
References
- http://securitytracker.com/id?1015885
- http://www.securityfocus.com/archive/1/430301/100/0/threaded
- http://www.securityfocus.com/bid/17431
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25727
- http://securitytracker.com/id?1015885
- http://www.securityfocus.com/archive/1/430301/100/0/threaded
- http://www.securityfocus.com/bid/17431
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25727
Products affected by CVE-2006-1704
-
cpe:2.3:a:hubert_plisson:sire:2.0