High severity7.2NVD Advisory· Published Aug 20, 2021· Updated Jun 17, 2026
CVE-2020-18885
CVE-2020-18885
Description
Command Injection in PHPMyWind v5.6 allows remote attackers to execute arbitrary code via the "text color" field of the component '/admin/web_config.php'.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- PHPMyWind/PHPMyWinddescription
Patches
Vulnerability mechanics
References
2- github.com/gaozhifeng/PHPMyWind/issues/4nvdExploitIssue TrackingThird Party Advisory
- cwe.mitre.org/data/definitions/77.htmlnvdTechnical Description
News mentions
0No linked articles in our index yet.