7.6 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
55.3%
Command Injection in PHPMyWind v5.6 allows remote attackers to execute arbitrary code via the βtext colorβ field of the component β/admin/web_config.phpβ.
cwe.mitre.org/data/definitions/77.html
github.com/gaozhifeng/PHPMyWind/issues/4