Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ihsan sencan vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-6005
SQL Injection exists in the Realpin up to and including 1.5.04 component for Joomla! via the pinboard parameter.
Realpin Project Realpin
1 EDB exploit
8.8
CVSSv3
CVE-2018-6007
CSRF exists in the JS Support Ticket 1.1.0 component for Joomla! and allows malicious users to inject HTML or edit a ticket.
Joomsky Js Support Ticket 1.1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-6584
SQL Injection exists in the DT Register 3.2.7 component for Joomla! via a task=edit&id= request.
Dthdevelopment Dt Register 3.2.7
1 EDB exploit
9.8
CVSSv3
CVE-2018-6585
SQL Injection exists in the JTicketing 2.0.16 component for Joomla! via a view=events action with a filter_creator or filter_events_cat parameter.
Techjoomla Jticketing 2.0.16
1 EDB exploit
9.8
CVSSv3
CVE-2018-5988
SQL Injection exists in Flexible Poll 1.2 via the id parameter to mobile_preview.php or index.php.
Flexible Poll Project Flexible Poll 1.2
1 EDB exploit
6.5
CVSSv3
CVE-2018-18760
RhinOS 3.0 build 1190 allows CSRF.
Saltos Rhinos 3.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18793
School Event Management System 1.0 allows Arbitrary File Upload via event/controller.php?action=photos.
School Event Management System Project School Event Management System 1.0
1 EDB exploit
8.8
CVSSv3
CVE-2018-18797
School Attendance Monitoring System 1.0 has CSRF via /user/user/edit.php.
School Attendance Monitoring System Project School Attendance Monitoring System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18803
Curriculum Evaluation System 1.0 allows SQL Injection via the login screen, related to frmCourse.vb and includes/user.vb.
Curriculum Evaluation System Project Curriculum Evaluation System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-17376
SQL Injection exists in the Reverse Auction Factory 4.3.8 component for Joomla! via the filter_order_Dir, cat, or filter_letter parameter.
Thephpfactory Reverse Auction Factory 4.3.8
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »