CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

CNVD•added 2021/12/06 12:0 a.m.•22 views

Z-BlogPHP arbitrary file deletion vulnerability

Z-BlogPHP is an open source PHP-based blogging system from the Z-blog community.Z-BlogPHP is vulnerable to an arbitrary file deletion vulnerability that stems from the inclusion of an arbitrary file deletion vulnerability via appdel.php. No detailed vulnerability details are currently available...

9.1CVSS3.4AI score0.00346EPSS

Exploits0References1

Prion•added 2021/12/02 11:15 p.m.•13 views

Arbitrary file deletion

Z-BlogPHP v1.6.1.2100 was discovered to contain an arbitrary file deletion vulnerability via \appdel.php...

6.4CVSS9.2AI score0.00346EPSS

Exploits0References1Affected Software1

CNNVD•added 2021/12/02 12:0 a.m.•2 views

Z-BlogPHP 安全漏洞

9.1CVSS5.7AI score0.00346EPSS

Exploits0References2

Prion•added 2018/02/06 2:29 p.m.•11 views

Cross site request forgery (csrf)

Z-BlogPHP 1.5.1 has CSRF via zbusers/plugin/AppCentre/appdel.php, as demonstrated by deleting files and directories...

5.8CVSS6.6AI score0.00098EPSS

Exploits1References2Affected Software1

CVE•added 2018/02/06 2:0 p.m.•38 views

CVE-2018-6656

Summary: CVE-2018-6656 affects Z-BlogPHP 1.5.1 with a cross‑site request forgery (CSRF) vulnerability in zb_users/plugin/AppCentre/app_del.php. The vulnerability enables a remote attacker to trigger actions that delete files and directories under the user area, as described in CNVD-2018-05361 and...

6.5CVSS6.5AI score0.00098EPSS

Exploits1References2Affected Software1