2 matches found
CVE-2019-7403
An issue was discovered in PHPMyWind 5.5. It allows remote attackers to delete arbitrary folders via an admin/databasebackup.php?action=import&dopost=deldir&tbname=../ URI...
CVE-2019-7403
PHPMyWind 5.5 is affected by CVE-2019-7403 due to an unsafely handled tbname parameter in admin/database_backup.php, allowing remote attackers to delete arbitrary folders via action=deldir and deldir path traversal. Impact is described as potential folder deletion with unauthenticated or limited-...