Ihsan Sencan

1,027 exploits Active since Sep 2017
EIP-2026-104870 EXPLOITDB text WRITEUP
9 Network Linkedin Clone Script - Improper Access Restrictions
CVE-2018-5977 EXPLOITDB CRITICAL text WORKING POC
Affiligator Affiliate Webshop Mgmt Sys <2.1.0 - SQL Injection
SQL Injection exists in Affiligator Affiliate Webshop Management System 2.1.0 via a search/?q=&price_type=range&price= request.
CVSS 9.8
EIP-2026-105015 EXPLOITDB text WORKING POC
Affiliate Tracking Script 1.1 - Authentication Bypass
EIP-2026-105012 EXPLOITDB text WORKING POC
Affiliate Niche Script 3.4.0 - SQL Injection
CVE-2017-17598 EXPLOITDB CRITICAL text WRITEUP
Affiliate MLM Script 1.0 - SQL Injection via product-category.php key Parameter
Affiliate MLM Script 1.0 has SQL Injection via the product-category.php key parameter.
CVSS 9.8
EIP-2026-104998 EXPLOITDB html WORKING POC
Advertiz PHP Script 0.2 - Cross-Site Request Forgery (Update Admin)
EIP-2026-104997 EXPLOITDB text WORKING POC
AdvanDate iCupid Dating Software 12.2 - SQL Injection
CVE-2017-17640 EXPLOITDB CRITICAL text WRITEUP
Advanced World Database 2.0.5 - SQL Injection via city.php or state.php Parameter
Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter.
CVSS 9.8
CVE-2017-17603 EXPLOITDB CRITICAL text WORKING POC
Advanced Real Estate Script 4.0.7 - SQL Injection via Search Parameters
Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.
CVSS 9.8
EIP-2026-104993 EXPLOITDB text WORKING POC
Advanced Real Estate Script 4.0.6 - SQL Injection
EIP-2026-104989 EXPLOITDB text WORKING POC
Advanced Matrimonial Script 2.0.3 - SQL Injection
EIP-2026-104973 EXPLOITDB text WRITEUP
Advanced Bus Booking Script 2.04 - SQL Injection
CVE-2017-17599 EXPLOITDB CRITICAL text WORKING POC
Advance Online Learning Management Script 3.1 - SQL Injection via courselist.php subcatid or popcourseid Parameter
Advance Online Learning Management Script 3.1 has SQL Injection via the courselist.php subcatid or popcourseid parameter.
CVSS 9.8
CVE-2017-17602 EXPLOITDB CRITICAL text WORKING POC
Advance B2B Script 2.1.3 - SQL Injection via tradeshow-list-detail.php show_id or view-product.php pid Parameter
Advance B2B Script 2.1.3 has SQL Injection via the tradeshow-list-detail.php show_id or view-product.php pid parameter.
CVSS 9.8
EIP-2026-104965 EXPLOITDB text WORKING POC
Adult Tube Video Script - SQL Injection
CVE-2017-15959 EXPLOITDB CRITICAL text WORKING POC
Adultscriptpro - SQL Injection
Adult Script Pro 2.2.4 allows SQL Injection via the PATH_INFO to a /download URI, a different vulnerability than CVE-2007-6576.
CVSS 9.8
EIP-2026-104964 EXPLOITDB text WORKING POC
Adserver Script 5.6 - SQL Injection
EIP-2026-104935 EXPLOITDB text WORKING POC
Adapt Inventory Management System 1.0 - SQL Injection
EIP-2026-104897 EXPLOITDB text WORKING POC
Academic Timetable Final Build 7.0b - Cross-Site Request Forgery (Add Admin)
EIP-2026-104896 EXPLOITDB text WORKING POC
Academic Timetable Final Build 7.0a-7.0b - 'id' SQL Injection
EIP-2026-104799 EXPLOITDB text WRITEUP
(Bitcoin / Dogecoin) PHP Cloud Mining Script - Authentication Bypass
EIP-2026-100655 EXPLOITDB WORKING POC
Library Management System 1.0 - 'frmListBooks' SQL Injection
EIP-2026-100365 EXPLOITDB text WORKING POC
ICAffiliateTracking 1.1 - Authentication Bypass
EIP-2026-100651 EXPLOITDB text WRITEUP
ICEstate 1.1 - 'id' SQL Injection
EIP-2026-100243 EXPLOITDB python WORKING POC
Digileave 1.2 - Cross-Site Request Forgery (Update Admin)