ihsan sencan vulnerabilities and exploits

7.5
CVSSv2
CVE-2017-15965

The NS Download Shop (aka com_ns_downloadshop) component 2.2.6 for Joomla! allows SQL Injection via the id parameter in an invoice.create action....

NswdNs Download Shop
7.5
CVSSv2
CVE-2017-15966

The Zh YandexMap (aka com_zhyandexmap) component 6.1.1.0 for Joomla! allows SQL Injection via the placemarklistid parameter to index.php....

Zh Yandexmap ProjectZh Yandexmap
7.5
CVSSv2
CVE-2018-6396

SQL Injection exists in the Google Map Landkarten through 4.2.3 component for Joomla! via the cid or id parameter in a layout=form_markers action, or the map parameter in a layout=default action....

Google Map Landkarten ProjectGoogle Map Landkarten
5
CVSSv2
CVE-2018-18756

Local Server 1.0.9 has a Buffer Overflow via crafted data on Port 4008....

7.5
CVSSv2
CVE-2018-6373

SQL Injection exists in the Fastball 2.5 component for Joomla! via the season parameter in a view=player action....

FastballproductionsFastball
7.5
CVSSv2
CVE-2018-5993

SQL Injection exists in the Aist through 2.0 component for Joomla! via the id parameter in a view=showvacancy request....

Aist ProjectAist
7.5
CVSSv2
CVE-2018-7313

SQL Injection exists in the CW Tags 2.0.6 component for Joomla! via the searchtext array parameter....

CwjoomlaCw Tags
7.5
CVSSv2
CVE-2018-6394

SQL Injection exists in the InviteX 3.0.5 component for Joomla! via the invite_type parameter in a view=invites action....

TechjoomlaInvitex
7.5
CVSSv2
CVE-2018-5982

SQL Injection exists in the Advertisement Board 3.1.0 component for Joomla! via a task=show_rss_categories&catname= request....

OrdasoftAdvertisement Board
7.5
CVSSv2
CVE-2018-7318

SQL Injection exists in the CheckList 1.1.1 component for Joomla! via the title_search, tag_search, name_search, description_search, or filter_order parameter....

BelitsoftChecklist