An issue exists in PHPMyWind 5.5. It allows remote malicious users to delete arbitrary folders via an admin/database_backup.php?action=import&dopost=deldir&tbname=../ URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpmywind phpmywind 5.5 |