CVE-2015-3640
CVE-2015-3640 affects phpMyBackupPro 2.5 and earlier. Root cause: improper escaping of the "." character in request parameters. Preconditions: attacker must be authenticated and know a web‑accessible, web‑writable directory. Exploit: can inject and execute arbitrary PHP scripts by supplying malic...