Ihsan Sencan

964 exploits Active since Sep 2017
CVE-2017-17602 EXPLOITDB CRITICAL text WORKING POC
Advance B2b Script - SQL Injection
Advance B2B Script 2.1.3 has SQL Injection via the tradeshow-list-detail.php show_id or view-product.php pid parameter.
CVSS 9.8
EIP-2026-104965 EXPLOITDB text WORKING POC
Adult Tube Video Script - SQL Injection
CVE-2017-15959 EXPLOITDB CRITICAL text WORKING POC
Adultscriptpro - SQL Injection
Adult Script Pro 2.2.4 allows SQL Injection via the PATH_INFO to a /download URI, a different vulnerability than CVE-2007-6576.
CVSS 9.8
EIP-2026-104964 EXPLOITDB text WORKING POC
Adserver Script 5.6 - SQL Injection
EIP-2026-104935 EXPLOITDB text WORKING POC
Adapt Inventory Management System 1.0 - SQL Injection
EIP-2026-104897 EXPLOITDB text WORKING POC
Academic Timetable Final Build 7.0b - Cross-Site Request Forgery (Add Admin)
EIP-2026-104799 EXPLOITDB text WRITEUP
(Bitcoin / Dogecoin) PHP Cloud Mining Script - Authentication Bypass
EIP-2026-104896 EXPLOITDB text WORKING POC
Academic Timetable Final Build 7.0a-7.0b - 'id' SQL Injection
EIP-2026-100655 EXPLOITDB WORKING POC
Library Management System 1.0 - 'frmListBooks' SQL Injection
EIP-2026-100365 EXPLOITDB text WORKING POC
ICAffiliateTracking 1.1 - Authentication Bypass
EIP-2026-100651 EXPLOITDB text WRITEUP
ICEstate 1.1 - 'id' SQL Injection
EIP-2026-100244 EXPLOITDB python WORKING POC
Digirez 3.4 - Cross-Site Request Forgery (Update Admin)
EIP-2026-100243 EXPLOITDB python WORKING POC
Digileave 1.2 - Cross-Site Request Forgery (Update Admin)
EIP-2026-100242 EXPLOITDB python WORKING POC
DigiAffiliate 1.4 - Cross-Site Request Forgery (Update Admin)