CVE-2018-7463

SQL injection vulnerability in files.php in the "files" component in ASANHAMAYESH CMS 3.4.6 allows a remote attacker to execute arbitrary SQL commands via the "id" parameter.
References
Link Resource
https://cxsecurity.com/issue/WLB-2018020278 Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:asanhamayesh:asanhamayesh_cms:3.4.6:*:*:*:*:*:*:*

Information

Published : 2018-02-26 01:29

Updated : 2018-03-17 10:38


NVD link : CVE-2018-7463

Mitre link : CVE-2018-7463

Products Affected
No products.
CWE