Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ihsan sencan vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-5990
SQL Injection exists in the AllVideos Reloaded 1.2.x component for Joomla! via the divid parameter.
Allvideos Reloaded Project Allvideos Reloaded
1 EDB exploit
9.8
CVSSv3
CVE-2018-5991
SQL Injection exists in the Form Maker 3.6.12 component for Joomla! via the id, from, or to parameter in a view=stats request, a different vulnerability than CVE-2015-2798.
Web-dorado Form Maker 3.6.12
1 EDB exploit
9.8
CVSSv3
CVE-2018-5992
SQL Injection exists in the Staff Master up to and including 1.0 RC 1 component for Joomla! via the name parameter in a view=staff request.
Staff Master Project Staff Master
Staff Master Project Staff Master 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-5994
SQL Injection exists in the JS Jobs 1.1.9 component for Joomla! via the zipcode parameter in a newest-jobs request, or the ta parameter in a view_resume request.
Joomsky Js Jobs 1.1.9
1 EDB exploit
9.8
CVSSv3
CVE-2018-6004
SQL Injection exists in the File Download Tracker 3.0 component for Joomla! via the dynfield[phone] or sess parameter.
Techsolsystem File Download Tracker 3.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-6005
SQL Injection exists in the Realpin up to and including 1.5.04 component for Joomla! via the pinboard parameter.
Realpin Project Realpin
1 EDB exploit
9.8
CVSSv3
CVE-2018-6006
SQL Injection exists in the JS Autoz 1.0.9 component for Joomla! via the vtype, pre, or prs parameter.
Joomsky Js Autoz 1.0.9
1 EDB exploit
8.8
CVSSv3
CVE-2018-6007
CSRF exists in the JS Support Ticket 1.1.0 component for Joomla! and allows malicious users to inject HTML or edit a ticket.
Joomsky Js Support Ticket 1.1.0
1 EDB exploit
7.5
CVSSv3
CVE-2018-6008
Arbitrary File Download exists in the Jtag Members Directory 5.3.7 component for Joomla! via the download_file parameter.
Joomlatag Jtag Members Directory 5.3.7
1 EDB exploit
9.8
CVSSv3
CVE-2018-6024
SQL Injection exists in the Project Log 1.5.3 component for Joomla! via the search parameter.
Thethinkery Project Log 1.5.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »