nolapro.com Cross Site Scripting vulnerability OBB-1376916

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

NolaPro Enterprise 4.0.5538 Cross Site Scripting and SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/39875/info NolaPro Enterprise is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials,...

NolaPro Default Credentials

The installation of NolaPro on the remote web server uses the default username and password to control access to its administrative console. Knowing these, an attacker can gain administrative control of the affected application. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

NolaPro Detection

The remote web server hosts NolaPro, a web-based business management application written in PHP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid46703; scriptversion"1.7"; scriptcvsdate"Date: 2019/11/22"; scriptnameenglish:"NolaPro Detection";...

CORELAN-10-035 NolaPro Enterprise multiple vulnerabilities

Advisory : CORELAN-10-035 Disclosure date : May 1st, 2010 http://www.corelan.be:8800/advisories.php?id=CORELAN-10-035 00 : Vulnerability information Product : NolaPro Enterprise Version : 4.0.5538 Vendor : Noguska LLC URL : http://www.nolapro.com Platform : Windows PHP/MySQL Type of vulnerabiliti...

NolaPro Enterprise 4.0.5538 Cross Site Scripting / SQL Injection

Advisory : CORELAN-10-035 Disclosure date : May 1st, 2010 http://www.corelan.be:8800/advisories.php?id=CORELAN-10-035 00 : Vulnerability information Product : NolaPro Enterprise Version : 4.0.5538 Vendor : Noguska LLC URL : http://www.nolapro.com Platform : Windows PHP/MySQL Type of vulnerabiliti...

NolaPro Enterprise 4.0.5538 - Cross-Site Scripting SQL Injection

NolaPro Enterprise 4.0.5538 - Cross-Site Scripting SQL Injection source: https://www.securityfocus.com/bid/39875/info NolaPro Enterprise is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal...

NolaPro Enterprise 4.0.5538 - Cross-Site Scripting / SQL Injection

source: https://www.securityfocus.com/bid/39875/info NolaPro Enterprise is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how the site is rendered ...