CVE-2015-3638
CVE-2015-3638 affects phpMyBackupPro prior to 2.5, where input validation is insufficient. An authenticated remote attacker can inject and execute arbitrary PHP code through the scheduled.php endpoint by supplying crafted values for path, filename, and period, or by injecting PHP into a PHP confi...