In Z-BlogPHP 1.5.1.1740, cmd.php has XSS via the ZC_BLOG_SUBNAME parameter or ZC_UPLOAD_FILETYPE parameter. NOTE: the software maintainer disputes that this is a vulnerability
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-03-06T21:00:00

Updated: 2024-08-05T06:31:05.113Z

Reserved: 2018-03-06T00:00:00

Link: CVE-2018-7736

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-03-06T21:29:00.503

Modified: 2024-08-05T07:15:43.830

Link: CVE-2018-7736

cve-icon Redhat

No data.