MidnightBSD

Advisories for asanhamayesh

CVE-2018-7463 HIGH

SQL injection vulnerability in files.php in the "files" component in ASANHAMAYESH CMS 3.4.6 allows a remote attacker to execute arbitrary SQL commands via the "id" parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
asanhamayesh asanhamayesh_cms 3.4.6