Z-BlogPHP 1.5.1 allows remote attackers to discover the full path via a direct request to zb_system/function/lib/upload.php.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/zblogcn/zblogphp/issues/176 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-02-08T16:00:00Z
Updated: 2024-09-16T23:22:07.563Z
Reserved: 2018-02-08T00:00:00Z
Link: CVE-2018-6846
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-02-08T16:29:00.177
Modified: 2018-03-08T17:23:48.837
Link: CVE-2018-6846
Redhat
No data.