ihsan sencan vulnerabilities and exploits

7.5
CVSSv2
CVE-2018-5992

SQL Injection exists in the Staff Master through 1.0 RC 1 component for Joomla! via the name parameter in a view=staff request....

Staff Master ProjectStaff Master
5
CVSSv2
CVE-2018-6397

Directory Traversal exists in the Picture Calendar 3.1.4 component for Joomla! via the list.php folder parameter....

JoomlacalendarsPicture Calendar
7.5
CVSSv2
CVE-2018-5983

SQL Injection exists in the JquickContact 1.3.2.2.1 component for Joomla! via a task=refresh&sid= request....

Jquickcontact ProjectJquickcontact
5
CVSSv2
CVE-2018-7317

Backup Download exists in the Proclaim 9.1.1 component for Joomla! via a direct request for a .sql file under backup/....

ChristianwebministriesProclaim
7.5
CVSSv2
CVE-2018-6024

SQL Injection exists in the Project Log 1.5.3 component for Joomla! via the search parameter....

ThethinkeryProject Log
7.5
CVSSv2
CVE-2018-6005

SQL Injection exists in the Realpin through 1.5.04 component for Joomla! via the pinboard parameter....

Realpin ProjectRealpin
7.5
CVSSv2
CVE-2018-5971

SQL Injection exists in the MediaLibrary Free 4.0.12 component for Joomla! via the id parameter or the mid array parameter....

OrdasoftMedialibrary
7.5
CVSSv2
CVE-2018-6584

SQL Injection exists in the DT Register 3.2.7 component for Joomla! via a task=edit&id= request....

DthdevelopmentDt Register
7.5
CVSSv2
CVE-2017-15979

Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter....

OdallatedShareet
7.5
CVSSv2
CVE-2018-7312

SQL Injection exists in the Alexandria Book Library 3.1.2 component for Joomla! via the letter parameter....