2 matches found
CVE-2018-6846
Z-BlogPHP 1.5.1 allows remote attackers to discover the full path via a direct request to zbsystem/function/lib/upload.php...
CVE-2018-6846
CVE-2018-6846 affects Z-BlogPHP 1.5.1 and enables remote attackers to disclose the full server path by directly requesting zb_system/function/lib/upload.php. Multiple sources (Red Hat, NVD, CNVD, CVE entries) confirm an information-disclosure path-traversal style exposure without wider exploitati...