Hubert Plisson: Security Vulnerabilities
PHP remote file inclusion vulnerability in lire.php in Sire 2.0 nws allows remote attackers to execute arbitrary PHP code via a URL in the rub parameter.
CVSS Score
7.5
EPSS Score
0.009
Published
2006-04-11
Sire 2.0 nws allows remote attackers to upload arbitrary image files without authentication via a direct request to upload.php.
CVSS Score
5.0
EPSS Score
0.038
Published
2006-04-11