Archery v1.7.5 to v1.8.5 exists to contain a SQL injection vulnerability via the where parameter at /archive/apply.
archerydms archery