admin/web_config.php in PHPMyWind 5.5 allows Admin users to execute arbitrary code via the cfg_author field in conjunction with a crafted cfg_webpath field.Referenceshttps://github.com/panghusec/exploit/issues/7
