CSRF exists in zb_users/plugin/AppCentre/theme.js.php in Z-BlogPHP 1.5.2.1935 (Zero), which allows remote malicious users to execute arbitrary PHP code.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zblogcn z-blogphp 1.5.2.1935\\(zero\\) |