admin/default.php in PHPMyWind v5.5 has XSS via an HTTP Host header.Referenceshttps://github.com/gaozhifeng/PHPMyWind/issues/3
