High severity7.2NVD Advisory· Published Sep 7, 2021· Updated Jun 17, 2026
CVE-2021-39503
CVE-2021-39503
Description
PHPMyWind 5.6 is vulnerable to Remote Code Execution. Becase input is filtered without "<, >, ?, =, `,...." In WriteConfig() function, an attacker can inject php code to /include/config.cache.php file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- PHPMyWind/PHPMyWinddescription
Patches
Vulnerability mechanics
References
1- github.com/gaozhifeng/PHPMyWind/issues/15nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.