MidnightBSD

Advisories for noguska

CVE-2002-1841 MEDIUM

The document management module in NOLA 1.1.1 and 1.1.2 does not restrict the types of files that are uploaded, which allows remote attackers to upload and execute arbitrary PHP files with extensions such as .php4.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-434,

Products Affected

Vendor Product Version
noguska nola 1.1.1
noguska nola 1.1.2