Vulnerabilities > Zblogcn > Z Blogphp > 1.6.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-08 | CVE-2024-39203 | Cross-site Scripting vulnerability in Zblogcn Z-Blogphp A cross-site scripting (XSS) vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. | 6.1 |
| 2022-09-20 | CVE-2022-40357 | Server-Side Request Forgery (SSRF) vulnerability in Zblogcn Z-Blogphp A security issue was discovered in Z-BlogPHP <= 1.7.2. | 9.8 |
| 2021-01-27 | CVE-2020-23352 | Unspecified vulnerability in Zblogcn Z-Blogphp 1.6.0 Z-BlogPHP 1.6.0 Valyria is affected by incorrect access control. | 7.5 |