asanhamayesh_cms vulnerabilities and exploits

7.5
CVSSv2
CVE-2018-7463

SQL injection vulnerability in files.php in the "files" component in ASANHAMAYESH CMS 3.4.6 allows a remote attacker to execute arbitrary SQL commands via the "id" parameter....