Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ihsan sencan vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-18798
Attendance Monitoring System 1.0 has SQL Injection via the 'id' parameter to student/index.php?view=view, event/index.php?view=view, and user/index.php?view=view.
School Attendance Monitoring System Project School Attendance Monitoring System 1.0
1 EDB exploit
8.8
CVSSv3
CVE-2018-18799
School Attendance Monitoring System 1.0 has CSRF via event/controller.php?action=photos.
School Attendance Monitoring System Project School Attendance Monitoring System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18801
The BSEN Ordering software 1.0 has SQL Injection via student/index.php?view=view&id=[SQL] or index.php?q=single-item&id=[SQL].
Bsen Ordering Software Project Bsen Ordering Software 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18803
Curriculum Evaluation System 1.0 allows SQL Injection via the login screen, related to frmCourse.vb and includes/user.vb.
Curriculum Evaluation System Project Curriculum Evaluation System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18804
Bakeshop Inventory System 1.0 has SQL injection via the login screen, related to include/publicfunction.vb.
Bakeshop Inventory System Project Bakeshop Inventory System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18805
Point Of Sales 1.0 allows SQL injection via the login screen, related to LoginForm1.vb.
Pointofsales Project Pointofsales 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2017-15981
Responsive Newspaper Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing.
Geniusocean Newspaper 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2017-15983
MyMagazine Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing.
Geniusocean Mymagazine Magazine \\& Blog Cms 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2017-15985
Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
Readymadeb2bscript Basic B2b Script -
1 EDB exploit
9.8
CVSSv3
CVE-2017-15988
Nice PHP FAQ Script allows SQL Injection via the index.php nice_theme parameter, a different vulnerability than CVE-2008-6525.
Nicephpscripts Nice Php Faq Script -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »