SQL injection vulnerability in index.php in CMS ISWEB 3.0 allows remote malicious users to execute arbitrary SQL commands via the id_sezione parameter.
cmsisweb cms isweb 3.0