High severity8.8NVD Advisory· Published Jul 21, 2017· Updated Jun 17, 2026
CVE-2015-3639
CVE-2015-3639
Description
phpMyBackupPro 2.5 and earlier does not properly sanitize input strings, which allows remote authenticated users to execute arbitrary PHP code by storing a crafted string in a user configuration file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:phpmybackuppro:phpmybackuppro:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpmybackuppro:phpmybackuppro:*:*:*:*:*:*:*:*range: <=2.5
- (no CPE)range: <=2.5
Patches
Vulnerability mechanics
References
3- openwall.com/lists/oss-security/2015/04/25/1nvdMailing ListPatchThird Party Advisory
- www.openwall.com/lists/oss-security/2015/05/04/4nvdMailing ListThird Party Advisory
- www.securitytracker.com/id/1032250nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.