cpe:/a:phpmywind:phpmywind:5.5 CVE-2018-17134 2018-09-17T00:29:01.657-04:00 2018-11-01T08:01:43.327-04:00 6.5 NETWORK LOW SINGLE_INSTANCE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2018-10-31T22:35:48.380-04:00 MISC https://github.com/panghusec/exploit/issues/7 admin/web_config.php in PHPMyWind 5.5 allows Admin users to execute arbitrary code via the cfg_author field in conjunction with a crafted cfg_webpath field.