Ihsan Sencan

964 exploits Active since Sep 2017
EIP-2026-109470 EXPLOITDB text WRITEUP
Million Pixels 3 - Authentication Bypass
EIP-2026-109383 EXPLOITDB text WRITEUP
Media Search Engine Script - 'search' SQL Injection
EIP-2026-109392 EXPLOITDB text WORKING POC
Medical Clinic Website Script - SQL Injection
EIP-2026-109374 EXPLOITDB text WRITEUP
MC Yellow Pages Script - SQL Injection
EIP-2026-109402 EXPLOITDB text WRITEUP
Membership Formula - 'order' SQL Injection
EIP-2026-109407 EXPLOITDB text WORKING POC
Meme Maker Script 2.1 - 'user' SQL Injection
CVE-2017-15967 EXPLOITDB CRITICAL text WORKING POC
Mailing-manager Mailing List Manager Pro - SQL Injection
Mailing List Manager Pro 3.0 allows SQL Injection via the edit parameter to admin/users in a sort=login action, or the edit parameter to admin/template.
CVSS 9.8
EIP-2026-108896 EXPLOITDB text WORKING POC
Joomla! Component vReview 1.9.11 - SQL Injection
EIP-2026-109040 EXPLOITDB text WORKING POC
KORA 2.7.0 - 'cid' SQL Injection
CVE-2018-6395 EXPLOITDB CRITICAL text WORKING POC
Joomlacalendars Visual Calendar - SQL Injection
SQL Injection exists in the Visual Calendar 3.1.3 component for Joomla! via the id parameter in a view=load action.
CVSS 9.8
EIP-2026-108894 EXPLOITDB text WORKING POC
Joomla! Component VMap 1.9.6 - SQL Injection
EIP-2026-108895 EXPLOITDB text WORKING POC
Joomla! Component vRestaurant 1.9.4 - SQL Injection
EIP-2026-109041 EXPLOITDB text WORKING POC
Kordil EDMS 2.2.60rc3 - Arbitrary File Upload
CVE-2018-17385 EXPLOITDB CRITICAL text WORKING POC
Social Factory 3.8.3 - SQL Injection
SQL Injection exists in the Social Factory 3.8.3 component for Joomla! via the radius[lat], radius[lng], or radius[radius] parameter.
CVSS 9.8
EIP-2026-108889 EXPLOITDB text WORKING POC
Joomla! Component Vik Appointments 1.5 - SQL Injection
EIP-2026-108891 EXPLOITDB text WRITEUP
Joomla! Component Vik Rent Car 1.11 - SQL Injection
EIP-2026-108888 EXPLOITDB text WORKING POC
Joomla! Component VehicleManager 3.9 - SQL Injection
EIP-2026-109060 EXPLOITDB text WORKING POC
Ladder System 6.0 - 'faqid' SQL Injection
EIP-2026-108860 EXPLOITDB text WRITEUP
Joomla! Component Soccer Bet 4.1.5 - 'userid' SQL Injection
CVE-2018-5980 EXPLOITDB CRITICAL text WORKING POC
Solidres 2.5.1 - SQL Injection
SQL Injection exists in the Solidres 2.5.1 component for Joomla! via the direction parameter in a hub.search action.
CVSS 9.8
EIP-2026-108830 EXPLOITDB text WORKING POC
Joomla! Component Photo Contest 1.0.2 - SQL Injection
EIP-2026-108892 EXPLOITDB text WRITEUP
Joomla! Component Vik Rent Items 1.3 - SQL Injection
CVE-2018-17378 EXPLOITDB CRITICAL text WORKING POC
Penny Auction Factory 2.0.4 - SQL Injection
SQL Injection exists in the Penny Auction Factory 2.0.4 component for Joomla! via the filter_order_Dir or filter_order parameter.
CVSS 9.8
EIP-2026-108825 EXPLOITDB text WORKING POC
Joomla! Component PayPal IPN for DOCman 3.1 - 'id' SQL Injection
CVE-2018-5975 EXPLOITDB CRITICAL text WORKING POC
Joomla! Smart Shoutbox 3.0.0 - SQL Injection
SQL Injection exists in the Smart Shoutbox 3.0.0 component for Joomla! via the shoutauthor parameter to the archive URI.
CVSS 9.8