Ihsan Sencan

964 exploits Active since Sep 2017
EIP-2026-108623 EXPLOITDB text WRITEUP
Joomla! Component Directorix Directory Manager 1.1.1 - SQL Injection
CVE-2018-7313 EXPLOITDB CRITICAL text WORKING POC
Cwjoomla CW Tags - SQL Injection
SQL Injection exists in the CW Tags 2.0.6 component for Joomla! via the searchtext array parameter.
CVSS 9.8
CVE-2018-6398 EXPLOITDB CRITICAL text WORKING POC
Joomlacalendars Event Calendar - SQL Injection
SQL Injection exists in the CP Event Calendar 3.0.1 component for Joomla! via the id parameter in a task=load action.
CVSS 9.8
EIP-2026-108617 EXPLOITDB text WORKING POC
Joomla! Component Coupon 3.5 - SQL Injection
EIP-2026-108615 EXPLOITDB text WORKING POC
Joomla! Component ContentMap 1.3.8 - 'contentid' SQL Injection
EIP-2026-108614 EXPLOITDB text WORKING POC
Joomla! Component Content ConstructionKit 1.1 - SQL Injection
EIP-2026-108246 EXPLOITDB text WORKING POC
Joomla! Component Community Surveys 4.3 - SQL Injection
EIP-2026-108245 EXPLOITDB text WORKING POC
Joomla! Component Community Quiz 4.3.5 - SQL Injection
EIP-2026-108244 EXPLOITDB text WORKING POC
Joomla! Component Community Polls 4.5.0 - SQL Injection
CVE-2018-17383 EXPLOITDB CRITICAL text WORKING POC
Joomla! - SQL Injection
SQL Injection exists in the Collection Factory 4.1.9 component for Joomla! via the filter_order or filter_order_Dir parameter.
CVSS 9.8
CVE-2018-7318 EXPLOITDB CRITICAL text WORKING POC
Belitsoft Checklist - SQL Injection
SQL Injection exists in the CheckList 1.1.1 component for Joomla! via the title_search, tag_search, name_search, description_search, or filter_order parameter.
CVSS 9.8
EIP-2026-108236 EXPLOITDB text WORKING POC
Joomla! Component CheckList 1.1.0 - SQL Injection
CVE-2018-5989 EXPLOITDB CRITICAL text WORKING POC
ccNewsletter 2.x - Joomla! - SQL Injection
SQL Injection exists in the ccNewsletter 2.x component for Joomla! via the id parameter in a task=removeSubscriber action, a related issue to CVE-2011-5099.
CVSS 9.8
EIP-2026-108226 EXPLOITDB text WORKING POC
Joomla! Component Calendar Planner 1.0.1 - SQL Injection
EIP-2026-108224 EXPLOITDB text WORKING POC
Joomla! Component BookLibrary 3.6.1 - SQL Injection
EIP-2026-108220 EXPLOITDB text WORKING POC
Joomla! Component Bazaar Platform 3.0 - SQL Injection
EIP-2026-108219 EXPLOITDB text WORKING POC
Joomla! Component Bargain Product VM3 1.0 - 'product_id' SQL Injection
EIP-2026-108218 EXPLOITDB text WORKING POC
Joomla! Component AYS Quiz 1.0 - 'id' SQL Injection
CVE-2018-17380 EXPLOITDB CRITICAL text WORKING POC
Article Factory Manager 4.3.9 - SQL Injection
SQL Injection exists in the Article Factory Manager 4.3.9 component for Joomla! via the start_date, m_start_date, or m_end_date parameter.
CVSS 9.8
EIP-2026-108209 EXPLOITDB text WORKING POC
Joomla! Component Appointments for JomSocial 3.8.1 - SQL Injection
EIP-2026-108208 EXPLOITDB text WORKING POC
Joomla! Component AppointmentBookingPro 4.0.1 - SQL Injection
EIP-2026-108202 EXPLOITDB text WORKING POC
Joomla! Component AltaUserPoints 1.1 - 'userid' SQL Injection
CVE-2018-17397 EXPLOITDB CRITICAL text WORKING POC
AlphaIndex Dictionaries <1.0 - SQL Injection
SQL Injection exists in the AlphaIndex Dictionaries 1.0 component for Joomla! via the letter parameter.
CVSS 9.8
CVE-2018-5990 EXPLOITDB CRITICAL text WORKING POC
AllVideos Reloaded <1.2.x - SQL Injection
SQL Injection exists in the AllVideos Reloaded 1.2.x component for Joomla! via the divid parameter.
CVSS 9.8
CVE-2018-7312 EXPLOITDB CRITICAL text WORKING POC
Alexandriabooklibrary Alexandria Book Library - SQL Injection
SQL Injection exists in the Alexandria Book Library 3.1.2 component for Joomla! via the letter parameter.
CVSS 9.8