Ihsan Sencan

964 exploits Active since Sep 2017
EIP-2026-112928 EXPLOITDB text WORKING POC
User Registration & Login and User Management System 2.1 - SQL Injection
EIP-2026-112919 EXPLOITDB text WORKING POC
Upworthy Clone Script 1.1.0 - 'id' SQL Injection
CVE-2018-6365 EXPLOITDB CRITICAL text WORKING POC
Datacomponents Tsitebuilder - SQL Injection
SQL Injection exists in TSiteBuilder 1.0 via the id parameter to /site.php, /pagelist.php, or /page_new.php.
CVSS 9.8
CVE-2018-5984 EXPLOITDB CRITICAL text WORKING POC
Tumder 2.1 - Joomla! - SQL Injection
SQL Injection exists in the Tumder (An Arcade Games Platform) 2.1 component for Joomla! via the PATH_INFO to the category/ URI.
CVSS 9.8
EIP-2026-112767 EXPLOITDB text WRITEUP
TradeMart 1.1 - SQL Injection
EIP-2026-112756 EXPLOITDB text WRITEUP
Tour Package Booking 1.0 - SQL Injection
EIP-2026-112759 EXPLOITDB text WORKING POC
Tourism Website Blog - Remote Code Execution / SQL Injection
EIP-2026-112887 EXPLOITDB text WORKING POC
Ultimate Viral Media Script 1.0 - 'id' SQL Injection
CVE-2017-15974 EXPLOITDB CRITICAL text WORKING POC
Datacomponents Tpanel - SQL Injection
tPanel 2009 allows SQL injection for Authentication Bypass via 'or 1=1 or ''=' to login.php.
CVSS 9.8
EIP-2026-112667 EXPLOITDB text WRITEUP
TI Online Examination System 2.0 - SQL Injection
EIP-2026-112636 EXPLOITDB text WORKING POC
The Open ISES Project 3.30A - Arbitrary File Download
EIP-2026-112645 EXPLOITDB text WORKING POC
Theater Management Script - SQL Injection
EIP-2026-112633 EXPLOITDB text WORKING POC
The Don 1.0.1 - 'login' SQL Injection
EIP-2026-112635 EXPLOITDB text WORKING POC
The Open ISES Project 3.30A - 'tick_lat' SQL Injection
EIP-2026-112788 EXPLOITDB text WORKING POC
Travel Tours Script 2.0 - SQL Injection
EIP-2026-112652 EXPLOITDB text WORKING POC
Themeforest Clone Script - SQL Injection
EIP-2026-112903 EXPLOITDB text WORKING POC
University Application System 1.0 - SQL Injection / Cross-Site Request Forgery (Add Admin)
CVE-2017-17110 EXPLOITDB CRITICAL text WORKING POC
Techno Portfolio Management Panel 1.0 - SQL Injection
Techno Portfolio Management Panel 1.0 allows an attacker to inject SQL commands via a single.php?id= request.
CVSS 9.8
EIP-2026-112662 EXPLOITDB text WORKING POC
ThisIsWhyImBroke Clone Script 4.0 - 'id' SQL Injection
EIP-2026-112631 EXPLOITDB text WORKING POC
The Car Project 1.0 - SQL Injection
CVE-2017-14840 EXPLOITDB HIGH text WORKING POC
TeamWork TicketPlus - Code Injection
TeamWork TicketPlus allows Arbitrary File Upload in updateProfile.
CVSS 8.8
EIP-2026-112554 EXPLOITDB text WORKING POC
Takas Classified 1.1 - SQL Injection
CVE-2018-6363 EXPLOITDB CRITICAL text WORKING POC
Taskrabbit Clone - SQL Injection
SQL Injection exists in Task Rabbit Clone 1.0 via the single_blog.php id parameter.
CVSS 9.8
EIP-2026-112904 EXPLOITDB text WORKING POC
University Application System 1.0 - SQL Injection / Cross-Site Request Forgery (Add Admin)
EIP-2026-112675 EXPLOITDB text WORKING POC
Tiger Post 3.0.1 - SQL Injection