Vulnerabilities (CVE)

Filtered by vendor Noguska Subscribe
Filtered by product Nola
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2002-1841 1 Noguska 1 Nola 2024-11-20 5.0 MEDIUM N/A
The document management module in NOLA 1.1.1 and 1.1.2 does not restrict the types of files that are uploaded, which allows remote attackers to upload and execute arbitrary PHP files with extensions such as .php4.