ihsan sencan vulnerabilities and exploits

7.5
CVSSv2
CVE-2017-17600

Basic B2B Script 2.0.8 has SQL Injection via the product_details.php id parameter....

7.5
CVSSv2
CVE-2017-17636

MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid parameter....

5
CVSSv2
CVE-2017-17593

Simple Chatting System 1.0 allows Arbitrary File Upload via view/my_profile.php, which places files under uploads/....

7.5
CVSSv2
CVE-2017-17601

Cab Booking Script 1.0 has SQL Injection via the /service-list city parameter....

7.5
CVSSv2
CVE-2018-7177

SQL Injection exists in the Saxum Numerology 3.0.4 component for Joomla! via the publicid parameter....

Saxum2003Numerology
7.5
CVSSv2
CVE-2017-15992

Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php....

7.5
CVSSv2
CVE-2018-5980

SQL Injection exists in the Solidres 2.5.1 component for Joomla! via the direction parameter in a hub.search action....

Solidres
7.5
CVSSv2
CVE-2017-17578

FS Crowdfunding Script 1.0 has SQL Injection via the latest_news_details.php id parameter....

FortunescriptsCrowdfunding Script
7.5
CVSSv2
CVE-2017-17589

FS Thumbtack Clone 1.0 has SQL Injection via the browse-category.php cat parameter or the browse-scategory.php sc parameter....

FortunescriptsThumbtack Clone
7.5
CVSSv2
CVE-2018-5984

SQL Injection exists in the Tumder (An Arcade Games Platform) 2.1 component for Joomla! via the PATH_INFO to the category/ URI....

Tumder ProjectTumder