Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ihsan sencan vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-5974
SQL Injection exists in the SimpleCalendar 3.1.9 component for Joomla! via the catid array parameter.
Albonico Simplecalendar 3.1.9
1 EDB exploit
8.8
CVSSv3
CVE-2018-5976
Cross Site Request Forgery (CSRF) exists in RSVP Invitation Online 1.0 via function/account.php, as demonstrated by modifying the admin password.
Rsvp Invitation Online Project Rsvp Invitation Online 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-5979
SQL Injection exists in Wchat Fully Responsive PHP AJAX Chat Script 1.5 via the login.php User field.
Wchat Project Wchat 1.5
1 EDB exploit
9.8
CVSSv3
CVE-2018-5982
SQL Injection exists in the Advertisement Board 3.1.0 component for Joomla! via a task=show_rss_categories&catname= request.
Ordasoft Advertisement Board 3.1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-5986
SQL Injection exists in Easy Car Script 2014 via the s_order or s_row parameter to site_search.php.
Easycarscript Easycarscript 2014
1 EDB exploit
9.8
CVSSv3
CVE-2018-5991
SQL Injection exists in the Form Maker 3.6.12 component for Joomla! via the id, from, or to parameter in a view=stats request, a different vulnerability than CVE-2015-2798.
Web-dorado Form Maker 3.6.12
1 EDB exploit
9.8
CVSSv3
CVE-2018-5993
SQL Injection exists in the Aist up to and including 2.0 component for Joomla! via the id parameter in a view=showvacancy request.
Aist Project Aist
1 EDB exploit
9.8
CVSSv3
CVE-2018-6004
SQL Injection exists in the File Download Tracker 3.0 component for Joomla! via the dynfield[phone] or sess parameter.
Techsolsystem File Download Tracker 3.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-6005
SQL Injection exists in the Realpin up to and including 1.5.04 component for Joomla! via the pinboard parameter.
Realpin Project Realpin
1 EDB exploit
8.8
CVSSv3
CVE-2018-6007
CSRF exists in the JS Support Ticket 1.1.0 component for Joomla! and allows malicious users to inject HTML or edit a ticket.
Joomsky Js Support Ticket 1.1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-25525
CVE-2024-4652
CVE-2024-1438
CVE-2024-4671
CVE-2024-34351
arbitrary
CVE-2024-4650
SQL injection
overflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »