CVE-2018-6656
Summary: CVE-2018-6656 affects Z-BlogPHP 1.5.1 with a cross‑site request forgery (CSRF) vulnerability in zb_users/plugin/AppCentre/app_del.php. The vulnerability enables a remote attacker to trigger actions that delete files and directories under the user area, as described in CNVD-2018-05361 and...