Ihsan Sencan

985 exploits Active since Sep 2017
EIP-2026-108861 EXPLOITDB text WORKING POC
Joomla! Component SP Movie Database 1.3 - SQL Injection
EIP-2026-108865 EXPLOITDB text WORKING POC
Joomla! Component Spider Calendar Lite 3.2.16 - SQL Injection
EIP-2026-108867 EXPLOITDB text WORKING POC
Joomla! Component Spider Catalog Lite 1.8.10 - SQL Injection
EIP-2026-108869 EXPLOITDB text WRITEUP
Joomla! Component Spider Facebook 1.6.1 - SQL Injection
EIP-2026-108871 EXPLOITDB text WORKING POC
Joomla! Component Spider FAQ Lite 1.3.1 - SQL Injection
EIP-2026-108873 EXPLOITDB text WRITEUP
Joomla! Component Spinner 360 1.3.0 - SQL Injection
EIP-2026-108875 EXPLOITDB text WORKING POC
Joomla! Component Sponsor Wall 8.0 - SQL Injection
CVE-2018-7179 EXPLOITDB CRITICAL text WORKING POC
SquadManagement 1.0.3 - SQL Injection via id Parameter
SQL Injection exists in the SquadManagement 1.0.3 component for Joomla! via the id parameter.
CVSS 9.8
CVE-2018-5992 EXPLOITDB CRITICAL text WORKING POC
Staff Master < 1.0 - SQL Injection via Name Parameter
SQL Injection exists in the Staff Master through 1.0 RC 1 component for Joomla! via the name parameter in a view=staff request.
CVSS 9.8
EIP-2026-108876 EXPLOITDB text WRITEUP
Joomla! Component Store for K2 3.8.2 - SQL Injection
EIP-2026-108877 EXPLOITDB text WORKING POC
Joomla! Component StreetGuessr Game 1.0 - SQL Injection
EIP-2026-108878 EXPLOITDB text WORKING POC
Joomla! Component StreetGuessr Game 1.1.8 - SQL Injection
EIP-2026-108879 EXPLOITDB text WRITEUP
Joomla! Component Survey Force Deluxe 3.2.4 - 'invite' SQL Injection
CVE-2018-17384 EXPLOITDB CRITICAL text WORKING POC
Swap Factory 2.2.1 - SQL Injection via filter_order_Dir or filter_order Parameter
SQL Injection exists in the Swap Factory 2.2.1 component for Joomla! via the filter_order_Dir or filter_order parameter.
CVSS 9.8
EIP-2026-108880 EXPLOITDB text WRITEUP
Joomla! Component Team Display 1.2.1 - 'filter_category' SQL Injection
CVE-2018-6583 EXPLOITDB CRITICAL text WORKING POC
Timetable Responsive Schedule 1.5 - SQL Injection via view=event&alias= Request
SQL Injection exists in the Timetable Responsive Schedule 1.5 component for Joomla! via a view=event&alias= request.
CVSS 9.8
CVE-2018-17394 EXPLOITDB CRITICAL text WRITEUP
Joomla! Timetable Schedule <3.6.8 - SQL Injection
SQL Injection exists in the Timetable Schedule 3.6.8 component for Joomla! via the eid parameter.
CVSS 9.8
EIP-2026-108881 EXPLOITDB text WORKING POC
Joomla! Component Twitch Tv 1.1 - SQL Injection
EIP-2026-108882 EXPLOITDB text WORKING POC
Joomla! Component Ultimate Property Listing 1.0.2 - SQL Injection
EIP-2026-108883 EXPLOITDB text WORKING POC
Joomla! Component User Bench 1.0 - 'userid' SQL Injection
EIP-2026-108884 EXPLOITDB text WORKING POC
Joomla! Component UserExtranet 1.3.1 - SQL Injection
EIP-2026-108885 EXPLOITDB text WORKING POC
Joomla! Component vAccount 2.0.2 - 'vid' SQL Injection
EIP-2026-108886 EXPLOITDB text WORKING POC
Joomla! Component vBizz 1.0.7 - Remote Code Execution
EIP-2026-108887 EXPLOITDB text WORKING POC
Joomla! Component vBizz 1.0.7 - SQL Injection
EIP-2026-108888 EXPLOITDB text WORKING POC
Joomla! Component VehicleManager 3.9 - SQL Injection