Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ihsan sencan vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-17876
Biometric Shift Employee Management System 3.0 allows remote malicious users to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter.
Iwcnetwork Shift 3.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18795
School Event Management System 1.0 has SQL Injection via the student/index.php or event/index.php id parameter.
School Event Management System Project School Event Management System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18798
Attendance Monitoring System 1.0 has SQL Injection via the 'id' parameter to student/index.php?view=view, event/index.php?view=view, and user/index.php?view=view.
School Attendance Monitoring System Project School Attendance Monitoring System 1.0
1 EDB exploit
8.8
CVSSv3
CVE-2018-18799
School Attendance Monitoring System 1.0 has CSRF via event/controller.php?action=photos.
School Attendance Monitoring System Project School Attendance Monitoring System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18803
Curriculum Evaluation System 1.0 allows SQL Injection via the login screen, related to frmCourse.vb and includes/user.vb.
Curriculum Evaluation System Project Curriculum Evaluation System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18804
Bakeshop Inventory System 1.0 has SQL injection via the login screen, related to include/publicfunction.vb.
Bakeshop Inventory System Project Bakeshop Inventory System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18805
Point Of Sales 1.0 allows SQL injection via the login screen, related to LoginForm1.vb.
Pointofsales Project Pointofsales 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2017-15978
AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
Arox School Erp Php Script 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2017-15979
Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter.
Odallated Shareet 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2017-15980
US Zip Codes Database Script 1.0 allows SQL Injection via the state parameter.
Rowindex Us Zip Codes Database Script 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »