nikolas-suites.gr Cross Site Scripting vulnerability OBB-3953929

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

WordPress WPBakery Visual Composer plugin <= 7.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via attributes vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via attributes vulnerability discovered by Nikolas in WordPress Plugin WPBakery Page Builder versions = 7.5...

WordPress Element Pack Elementor Addons plugin <= 5.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Trailer Box Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Trailer Box Widget vulnerability discovered by Nikolas in WordPress Plugin Element Pack Elementor Addons versions = 5.5.3...

WordPress Element Pack Elementor Addons Plugin <= 5.5.3 is vulnerable to Cross Site Scripting (XSS)

Software Element Pack Elementor Addons Type Plugin Vulnerable versions = 5.5.3 Fixed in 5.5.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1428 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID baacef610d60 Credits Nikolas...

NSOADV-2013-002: DELL SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass &#40;/sgms/&#41;

-------------------------- NSOADV-2013-002 --------------------------- SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass /sgms/ 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11 111111...

SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass

Exploit for multiple platform in category web applications -------------------------- NSOADV-2013-002 --------------------------- SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass /sgms/ 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001...

Symantec LiveUpdate Administrator Cross-Site Request Forgery

SUMMARY Symantecs LiveUpdate Administrator LUA is susceptible to a cross-site request forgery vulnerability which could result in the execution of HTML or script code in the context of the admins browser. AFFECTED PRODUCTS Product | Version | Solution ---|---|--- Symantec LiveUpdate Administrator...

NSOADV-2011-003: Majordomo2 &#39;help&#39; Command Directory Traversal &#40;Patch Bypass&#41;

-------------------------- NSOADV-2011-003 --------------------------- Majordomo2 'help' Command Directory Traversal Patch Bypass 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11 1111111 1...

NSOADV-2010-005: SonicWALL E-Class SSL-VPN ActiveX Control format string overflow

-------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...

SonicWALL E-Class SSL-VPN - ActiveX Control Format String Overflow

-------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...

NSOADV-2010-009: AnNoText Third-Party ActiveX Control file overwrite vulnerability

-------------------------- NSOADV-2010-009 --------------------------- AnNoText Third-Party ActiveX Control file overwrite vulnerability 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...

NSOADV-2010-003: DATEV ActiveX Control remote command execution

NSOADV-2010-003: DATEV ActiveX Control remote command execution 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11 1111111 1 111 111001 111111111 0 10 1111 0 11 11 111111111 1 1101 10 00111 ...

Panda Security Local Privilege Escalation

Security Advisory NSOADV-2010-001 Title: Panda Security Local Privilege Escalation Severity: Medium Advisory ID: NSOADV-2010-001 Found Date: 02.2008 Date Reported: 30.11.2009 Release Date: 09.01.2010 Author: Nikolas Sotiriu lofi Mail: nso-research at sotiriu.de URL:...

Serv-u web client 9.0.0.5 buffer overflow

Exploit for unknown platform in category remote exploits ========================================= Serv-u web client 9.0.0.5 buffer overflow ========================================= Title: Serv-u web client 9.0.0.5 buffer overflow CVE-ID: OSVDB-ID: Author: Nikolas Rangos Published: 2009-11-02...

Symantec ConsoleUtilities ActiveX Buffer Overflow

Exploit for unknown platform in category remote exploits ================================================= Symantec ConsoleUtilities ActiveX Buffer Overflow ================================================= Title: Symantec ConsoleUtilities ActiveX Buffer Overflow CVE-ID: OSVDB-ID: Author: Nikolas...

Websense Email Security - Cross-Site Scripting

Websense Email Security - Cross-Site Scripting Security Advisory NSOADV-2009-003 Title: Websense Email Security Cross Site Scripting Severity: Low Advisory ID: NSOADV-2009-003 Found Date: 28.09.2009 Date Reported: 01.10.2009 Release Date: 20.10.2009 Author: Nikolas Sotiriu Mail: nso-research at...