Zblogcn Z-Blogphp vulnerabilities
21 known vulnerabilities affecting zblogcn/z-blogphp.
Total CVEs
21
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH7MEDIUM11
Vulnerabilities
Page 1 of 2
CVE-2018-7737P3MEDIUMCVSS 5.3PoCv1.5.1.17402018-03-06
CVE-2018-7737 [MEDIUM] CWE-200 CVE-2018-7737: In Z-BlogPHP 1.5.1.1740, there is Web Site physical path leakage, as demonstrated by admin_footer.ph
In Z-BlogPHP 1.5.1.1740, there is Web Site physical path leakage, as demonstrated by admin_footer.php or admin_footer.php. NOTE: the software maintainer disputes that this is a vulnerability
nvd
CVE-2018-7736P3MEDIUMCVSS 6.1PoCv1.5.1.17402018-03-06
CVE-2018-7736 [MEDIUM] CWE-79 CVE-2018-7736: In Z-BlogPHP 1.5.1.1740, cmd.php has XSS via the ZC_BLOG_SUBNAME parameter or ZC_UPLOAD_FILETYPE par
In Z-BlogPHP 1.5.1.1740, cmd.php has XSS via the ZC_BLOG_SUBNAME parameter or ZC_UPLOAD_FILETYPE parameter. NOTE: the software maintainer disputes that this is a vulnerability
nvd
CVE-2024-55529P3CRITICALCVSS 9.8v1.7.32025-01-06
CVE-2024-55529 [CRITICAL] CWE-94 CVE-2024-55529: Z-BlogPHP 1.7.3 is vulnerable to arbitrary code execution via \zb_users\theme\shell\template.
Z-BlogPHP 1.7.3 is vulnerable to arbitrary code execution via \zb_users\theme\shell\template.
nvd
CVE-2018-19463P3HIGHCVSS 8.8≤ 1.5.12018-11-22
CVE-2018-19463 [HIGH] CWE-94 CVE-2018-19463: zb_system/function/lib/upload.php in Z-BlogPHP through 1.5.1 allows remote attackers to execute arbi
zb_system/function/lib/upload.php in Z-BlogPHP through 1.5.1 allows remote attackers to execute arbitrary PHP code by using the image/jpeg content type in an upload to the zb_system/admin/index.php?act=UploadMng URI. NOTE: The vendor's position is "We have no dynamic including. No one can run PHP by uploading an image in current version." It also requi
nvd
CVE-2020-18268P3MEDIUMCVSS 6.1PoC≤ 1.5.22021-06-07
CVE-2020-18268 [MEDIUM] CWE-601 CVE-2020-18268: Open Redirect in Z-BlogPHP v1.5.2 and earlier allows remote attackers to obtain sensitive informatio
Open Redirect in Z-BlogPHP v1.5.2 and earlier allows remote attackers to obtain sensitive information via the "redirect" parameter in the component "zb_system/cmd.php."
nvd
CVE-2022-40357P3CRITICALCVSS 9.8≤ 1.7.22022-09-20
CVE-2022-40357 [CRITICAL] CWE-918 CVE-2022-40357: A security issue was discovered in Z-BlogPHP <= 1.7.2. A Server-Side Request Forgery (SSRF) vulnerab
A security issue was discovered in Z-BlogPHP <= 1.7.2. A Server-Side Request Forgery (SSRF) vulnerability in the zb_users/plugin/UEditor/php/action_crawler.php file allows remote attackers to force the application to make arbitrary requests via injection of arbitrary URLs into the source parameter.
nvd
CVE-2020-23352P3HIGHCVSS 7.5v1.6.02021-01-27
CVE-2020-23352 [HIGH] CVE-2020-23352: Z-BlogPHP 1.6.0 Valyria is affected by incorrect access control. PHP loose comparison and a magic ha
Z-BlogPHP 1.6.0 Valyria is affected by incorrect access control. PHP loose comparison and a magic hash can be used to bypass authentication. zb_user/plugin/passwordvisit/include.php:passwordvisit_input_password() uses loose comparison to authenticate, which can be bypassed via magic hash values.
nvd
CVE-2018-18842P3HIGHCVSS 8.8v1.5.2.1935\(zero\)2018-10-30
CVE-2018-18842 [HIGH] CWE-352 CVE-2018-18842: CSRF exists in zb_users/plugin/AppCentre/theme.js.php in Z-BlogPHP 1.5.2.1935 (Zero), which allows r
CSRF exists in zb_users/plugin/AppCentre/theme.js.php in Z-BlogPHP 1.5.2.1935 (Zero), which allows remote attackers to execute arbitrary PHP code.
nvd
CVE-2018-9153P3HIGHCVSS 7.2v1.5.12018-04-16
CVE-2018-9153 [HIGH] CVE-2018-9153: The plugin upload component in Z-BlogPHP 1.5.1 allows remote attackers to execute arbitrary PHP code
The plugin upload component in Z-BlogPHP 1.5.1 allows remote attackers to execute arbitrary PHP code via the app_id parameter to zb_users/plugin/AppCentre/plugin_edit.php because of an unanchored regular expression, a different vulnerability than CVE-2018-8893. The component must be accessed directly by an administrator, or through CSRF.
nvd
CVE-2020-29177P3CRITICALCVSS 9.1v1.6.1.21002021-12-02
CVE-2020-29177 [CRITICAL] CVE-2020-29177: Z-BlogPHP v1.6.1.2100 was discovered to contain an arbitrary file deletion vulnerability via \app_de
Z-BlogPHP v1.6.1.2100 was discovered to contain an arbitrary file deletion vulnerability via \app_del.php.
nvd
CVE-2018-8893P3HIGHCVSS 8.8v1.5.12018-03-31
CVE-2018-8893 [HIGH] CWE-352 CVE-2018-8893: Z-BlogPHP 1.5.1 Zero has CSRF in plugin_edit.php, resulting in the ability to execute arbitrary PHP
Z-BlogPHP 1.5.1 Zero has CSRF in plugin_edit.php, resulting in the ability to execute arbitrary PHP code.
nvd
CVE-2020-29176P3HIGHCVSS 7.8v1.6.1.21002021-12-02
CVE-2020-29176 [HIGH] CWE-434 CVE-2020-29176: An arbitrary file upload vulnerability in Z-BlogPHP v1.6.1.2100 allows attackers to execute arbitrar
An arbitrary file upload vulnerability in Z-BlogPHP v1.6.1.2100 allows attackers to execute arbitrary code via a crafted JPG file.
nvd
CVE-2018-11209P3HIGHCVSS 7.2v2.0.02018-05-16
CVE-2018-11209 [HIGH] CWE-327 CVE-2018-11209: An issue was discovered in Z-BlogPHP 2.0.0. zb_system/cmd.php?act=verify relies on MD5 for the passw
An issue was discovered in Z-BlogPHP 2.0.0. zb_system/cmd.php?act=verify relies on MD5 for the password parameter, which might make it easier for attackers to bypass intended access restrictions via a dictionary or rainbow-table attack. NOTE: the vendor declined to accept this as a valid issue
nvd
CVE-2018-6656P4MEDIUMCVSS 6.5v1.5.12018-02-06
CVE-2018-6656 [MEDIUM] CWE-352 CVE-2018-6656: Z-BlogPHP 1.5.1 has CSRF via zb_users/plugin/AppCentre/app_del.php, as demonstrated by deleting file
Z-BlogPHP 1.5.1 has CSRF via zb_users/plugin/AppCentre/app_del.php, as demonstrated by deleting files and directories.
nvd
CVE-2018-6846P4MEDIUMCVSS 5.3v1.5.12018-02-08
CVE-2018-6846 [MEDIUM] CWE-200 CVE-2018-6846: Z-BlogPHP 1.5.1 allows remote attackers to discover the full path via a direct request to zb_system/
Z-BlogPHP 1.5.1 allows remote attackers to discover the full path via a direct request to zb_system/function/lib/upload.php.
nvd
CVE-2018-10680P4MEDIUMCVSS 6.1v1.5.22018-05-02
CVE-2018-10680 [MEDIUM] CWE-79 CVE-2018-10680: Z-BlogPHP 1.5.2 has a stored Cross Site Scripting Vulnerability exploitable by an administrator who
Z-BlogPHP 1.5.2 has a stored Cross Site Scripting Vulnerability exploitable by an administrator who navigates to "Web site settings --> Basic setting --> Website title" and enters an XSS payload via the zb_system/cmd.php ZC_BLOG_NAME parameter. NOTE: the vendor disputes the security relevance, noting it is "just a functional bug.
nvd
CVE-2024-39203P4MEDIUMCVSS 6.1≤ 1.7.3.32302024-07-08
CVE-2024-39203 [MEDIUM] CWE-79 CVE-2024-39203: A cross-site scripting (XSS) vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.
A cross-site scripting (XSS) vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
nvd
CVE-2018-18381P4MEDIUMCVSS 5.4v1.5.2.19352018-10-16
CVE-2018-18381 [MEDIUM] CWE-79 CVE-2018-18381: Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php
Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php via the Content-Type header during the uploading of image attachments.
nvd
CVE-2018-9169P4MEDIUMCVSS 4.8v1.5.12018-04-16
CVE-2018-9169 [MEDIUM] CWE-79 CVE-2018-9169: Z-BlogPHP 1.5.1 has XSS via the zb_users/plugin/AppCentre/plugin_edit.php app_id parameter. The comp
Z-BlogPHP 1.5.1 has XSS via the zb_users/plugin/AppCentre/plugin_edit.php app_id parameter. The component must be accessed directly by an administrator, or through CSRF.
nvd
CVE-2018-11208P4MEDIUMCVSS 4.8v2.0.02018-05-16
CVE-2018-11208 [MEDIUM] CWE-79 CVE-2018-11208: An issue was discovered in Z-BlogPHP 2.0.0. There is a persistent XSS that allows remote attackers t
An issue was discovered in Z-BlogPHP 2.0.0. There is a persistent XSS that allows remote attackers to inject arbitrary web script or HTML into background web site settings via the "copyright information office" field. NOTE: the vendor indicates that the product was not intended to block this type of XSS by a user with the admin privilege
nvd
1 / 2Next →