Security Advisory

CVE-2021-39503

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-07 19:51:23

Last updated 2024-08-04 02:06:42

Assigner mitre

State PUBLISHED

Description

PHPMyWind 5.6 is vulnerable to Remote Code Execution. Becase input is filtered without "<, >, ?, =, `,...." In WriteConfig() function, an attacker can inject php code to /include/config.cache.php file.

← Browse all CVEs View on cve.org ↗