Ihsan Sencan

985 exploits Active since Sep 2017
CVE-2017-17875 EXPLOITDB CRITICAL text WORKING POC
JEXTN FAQ Pro 4.0.0 - SQL Injection via id Parameter
The JEXTN FAQ Pro extension 4.0.0 for Joomla! has SQL Injection via the id parameter in a view=category action.
CVSS 9.8
CVE-2018-6575 EXPLOITDB CRITICAL text WORKING POC
JEXTN Classified 1.0.0 - SQL Injection via view=boutique&sid Parameter
SQL Injection exists in the JEXTN Classified 1.0.0 component for Joomla! via a view=boutique&sid= request.
CVSS 9.8
EIP-2026-108721 EXPLOITDB text WORKING POC
Joomla! Component JEmbedAll 1.4 - SQL Injection
EIP-2026-108718 EXPLOITDB text WORKING POC
Joomla! Component JE Video Rate 1.0 - SQL Injection
EIP-2026-108717 EXPLOITDB text WORKING POC
Joomla! Component JE Tour 2.0 - SQL Injection
EIP-2026-108716 EXPLOITDB text WORKING POC
Joomla! Component JE Ticket System 1.2 - SQL Injection
EIP-2026-108713 EXPLOITDB text WORKING POC
Joomla! Component JE QuoteForm - 'Itemid' SQL Injection
EIP-2026-108712 EXPLOITDB text WORKING POC
Joomla! Component JE Quiz 2.3 - SQL Injection
EIP-2026-108711 EXPLOITDB text WORKING POC
Joomla! Component JE Property Finder 1.6.3 - SQL Injection
EIP-2026-108710 EXPLOITDB text WORKING POC
Joomla! Component JE Portfolio Creator 1.2 - 'd_itemid' SQL Injection
CVE-2018-6578 EXPLOITDB CRITICAL html WORKING POC
je_paypervideo 3.0.0 - SQL Injection via usr_plan Parameter
SQL Injection exists in the JE PayperVideo 3.0.0 component for Joomla! via the usr_plan parameter in a view=myplans&task=myplans.usersubscriptions request.
CVSS 9.8
EIP-2026-108706 EXPLOITDB text WORKING POC
Joomla! Component JE Messanger - SQL Injection
EIP-2026-108704 EXPLOITDB text WORKING POC
Joomla! Component JE K2 Multiple Form Story 1.3 - 'Itemid' SQL Injection
EIP-2026-108702 EXPLOITDB text WORKING POC
Joomla! Component JE Grid Folio - 'id' SQL Injection
EIP-2026-108701 EXPLOITDB text WORKING POC
Joomla! Component JE Gallery 1.3 - 'photo_id' SQL Injection
EIP-2026-108700 EXPLOITDB text WORKING POC
Joomla! Component JE Form Creator 1.8 - 'Itemid' SQL Injection
EIP-2026-108699 EXPLOITDB text WORKING POC
Joomla! Component JE Directory 1.7 - 'ditemid' SQL Injection
EIP-2026-108698 EXPLOITDB text WORKING POC
Joomla! Component JE Classify Ads 1.2 - 'pro_id' SQL Injection
EIP-2026-108697 EXPLOITDB text WORKING POC
Joomla! Component JE Awd Song 1.8 - SQL Injection
EIP-2026-108696 EXPLOITDB text WORKING POC
Joomla! Component JE Auto 1.5 - 'd_itemid' SQL Injection
EIP-2026-108694 EXPLOITDB text WORKING POC
Joomla! Component JE auction 1.6 - 'eid' SQL Injection
EIP-2026-108691 EXPLOITDB text WORKING POC
Joomla! Component jCart for OpenCart 2.0 - 'product_id' SQL Injection
CVE-2017-17870 EXPLOITDB CRITICAL text WORKING POC
JBuildozer 1.4.1 - SQL Injection via appid Parameter
The JBuildozer extension 1.4.1 for Joomla! has SQL Injection via the appid parameter in an entriessearch action.
CVSS 9.8
EIP-2026-108688 EXPLOITDB text WORKING POC
Joomla! Component JB Visa 1.0 - 'visatype' SQL Injection
CVE-2018-6372 EXPLOITDB CRITICAL text WORKING POC
JB Bus 2.3 - SQL Injection via order_number Parameter
SQL Injection exists in the JB Bus 2.3 component for Joomla! via the order_number parameter.
CVSS 9.8