5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
49.3%
Z-BlogPHP 1.5.1 allows remote attackers to discover the full path via a direct request to zb_system/function/lib/upload.php.
github.com/zblogcn/zblogphp/issues/176