Ihsan Sencan - Security Researcher - Exploit Intelligence Platform

EIP-2026-110720 EXPLOITDB text WORKING POC

PHP Logo Designer Script - Arbitrary File Upload

View Code

EIP-2026-110702 EXPLOITDB text WORKING POC

PHP Forum Script 3.0 - SQL Injection

View Code

CVE-2017-15990 EXPLOITDB CRITICAL text WRITEUP

Savsofteproducts Phpinventory - Unrestricted File Upload

Php Inventory & Invoice Management System allows Arbitrary File Upload via dashboard/edit_myaccountdetail/.

CVSS 9.8

View Code

EIP-2026-110681 EXPLOITDB text WORKING POC

PHP Dashboards NEW 5.8 - 'dashID' SQL Injection

View Code

EIP-2026-110711 EXPLOITDB text WORKING POC

PHP Jokesite 2.0 - 'joke_id' SQL Injection

View Code

EIP-2026-110679 EXPLOITDB text WRITEUP

PHP Dashboards NEW 4.4 - SQL Injection

View Code

EIP-2026-110672 EXPLOITDB text SUSPICIOUS

PHP Classifieds Script 5.6.2 - SQL Injection

View Code

EIP-2026-110671 EXPLOITDB text WORKING POC

PHP Classifieds Rental Script 3.6.0 - 'scatid' SQL Injection

View Code

EIP-2026-110675 EXPLOITDB text WORKING POC

PHP Coupon Script 6.0 - 'cid' SQL Injection

View Code

EIP-2026-110682 EXPLOITDB text WORKING POC

PHP Dashboards NEW 5.8 - Local File Inclusion

View Code

EIP-2026-110654 EXPLOITDB text WORKING POC

PHP B2B Script 3.05 - SQL Injection

View Code

CVE-2017-15970 EXPLOITDB CRITICAL text WRITEUP

Phpcityportal - SQL Injection

PHP CityPortal 2.0 allows SQL Injection via the nid parameter to index.php in a page=news action, or the cat parameter.

CVSS 9.8

View Code

EIP-2026-110722 EXPLOITDB text WORKING POC

PHP Mass Mail 1.0 - Arbitrary File Upload

View Code

EIP-2026-110723 EXPLOITDB text WORKING POC

PHP Matrimonial Script 3.0 - SQL Injection

View Code

EIP-2026-110666 EXPLOITDB text WORKING POC

Php Classified OLX Clone Script - 'category' SQL Injection

View Code

EIP-2026-110747 EXPLOITDB text WRITEUP

Php Real Estate Property Script - SQL Injection

View Code

EIP-2026-110678 EXPLOITDB text WRITEUP

PHP Dashboards NEW 4.4 - Arbitrary File Read

View Code

EIP-2026-110777 EXPLOITDB text WORKING POC

PHP Uber-style GeoTracking 1.1 - SQL Injection

View Code

CVE-2017-15969 EXPLOITDB CRITICAL text WORKING POC

Pilotgroup Allsharevideo - SQL Injection

PG All Share Video 1.0 allows SQL Injection via the PATH_INFO to search/tag, friends/index, users/profile, or video_catalog/category.

CVSS 9.8

View Code

EIP-2026-110555 EXPLOITDB text WORKING POC

Pet Listing Script 3.0 - SQL Injection

View Code

CVE-2017-14839 EXPLOITDB HIGH text WRITEUP

TeamWork Photo Fusion - Arbitrary File Upload

TeamWork Photo Fusion allows Arbitrary File Upload in changeAvatar and changeCover.

CVSS 8.8

View Code

CVE-2018-18800 EXPLOITDB CRITICAL text WORKING POC

Tubigan Welcome TO Our Resort - SQL Injection

The Tubigan "Welcome to our Resort" 1.0 software allows SQL Injection via index.php?p=accomodation&q=[SQL], index.php?p=rooms&q=[SQL], or admin/login.php.

CVSS 9.8

View Code

EIP-2026-110545 EXPLOITDB text WRITEUP

Penny Auction Script - Arbitrary File Upload

View Code

EIP-2026-110617 EXPLOITDB text WORKING POC

Photogallery Project 1.0 - SQL Injection

View Code

EIP-2026-110500 EXPLOITDB text WRITEUP

Pay Banner Text Link Ad 1.0.6.1 - SQL Injection

View Code