161 matches found
Z-Blog <=1.5.2 - Open Redirect
Z-Blog 1.5.2 and earlier contains an open redirect vulnerability via the redirect parameter in zbsystem/cmd.php. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations. id: CVE-2020-18268 info: name: Z-Blo...
CVE-2026-8747
A weakness has been identified in Z-BlogPHP 1.7.4.3430. This affects the function CheckComment of the file zbsystem/function/csystemevent.php of the component Commend Approval Handler. This manipulation causes improper authorization. The attack may be initiated remotely. The exploit has been made...
CVE-2026-8747
A weakness has been identified in Z-BlogPHP 1.7.4.3430. This affects the function CheckComment of the file zbsystem/function/csystemevent.php of the component Commend Approval Handler. This manipulation causes improper authorization. The attack may be initiated remotely. The exploit has been made...
CVE-2026-8747
CVE-2026-8747 affects Z-BlogPHP 1.7.4.3430, specifically the CheckComment function in zb_system/function/c_system_event.php within the Commend Approval Handler. The issue arises from a manipulation that yields improper authorization. The vulnerability can be triggered remotely, and public Exploit...
CVE-2026-8747 Z-BlogPHP Commend Approval c_system_event.php CheckComment improper authorization
A weakness has been identified in Z-BlogPHP 1.7.4.3430. This affects the function CheckComment of the file zbsystem/function/csystemevent.php of the component Commend Approval Handler. This manipulation causes improper authorization. The attack may be initiated remotely. The exploit has been made...
CVE-2026-8747 Z-BlogPHP Commend Approval c_system_event.php CheckComment improper authorization
A weakness has been identified in Z-BlogPHP 1.7.4.3430. This affects the function CheckComment of the file zbsystem/function/csystemevent.php of the component Commend Approval Handler. This manipulation causes improper authorization. The attack may be initiated remotely. The exploit has been made...
Z-BlogPHP 安全漏洞
Z-BlogPHP is an open-source PHP-based blog system developed by the Z-Blog community. Version Z-BlogPHP 1.7.4.3430 contains a security vulnerability. This vulnerability stems from an improper authorization in the CheckComment function of the commend Approval Handler component’s csystemevent.php...
CVE-2026-6650
Z-BlogPHP 1.7.5 contains a vulnerability in the App::UnPack function of /zb_users/plugin/AppCentre/app_upload.php (ZBA File Handler) that allows unrestricted file upload. Impact is described as unrestricted upload with network/remote initiation; exploitation is publicly available per the CVE entr...
CVE-2026-6650
A vulnerability was identified in Z-BlogPHP 1.7.5. This affects the function App::UnPack of the file /zbusers/plugin/AppCentre/appupload.php of the component ZBA File Handler. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit is publicly available an...
Z-BlogPHP 安全漏洞
Z-BlogPHP is an open-source PHP-based blog system developed by the Z-Blog community. Version 1.7.5 of Z-BlogPHP contains a security vulnerability. This vulnerability stems from a flaw in the App::UnPack function located in the file zbusers/plugin/AppCentre/appUpload.php of the ZBA File Handler...
CVE-2024-39203
A cross-site scripting XSS vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
EUVD-2020-21557
Malware in sbrugna...
EUVD-2018-20752
Malware in sbrugna...
EUVD-2018-10556
Malware in sbrugna...
EUVD-2018-10112
Malware in sbrugna...
EUVD-2020-10195
Malware in sbrugna...
EUVD-2018-20766
Malware in sbrugna...
EUVD-2018-18592
Malware in sbrugna...
EUVD-2018-18403
Malware in sbrugna...
EUVD-2018-20501
Malware in sbrugna...