CVE-2026-8747 | Z-BlogPHP 1.7.4.3430 Commend Approval c_system_event.php CheckComment improper authorization

Inserito da Angelo Barbosa | Mag 16, 2026 | CVE

A vulnerability marked as critical has been reported in Z-BlogPHP 1.7.4.3430. This affects the function CheckComment of the file zb_system/function/c_system_event.php of the component Commend Approval Handler. This manipulation causes improper authorization.

This vulnerability appears as CVE-2026-8747. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-8747 | Z-BlogPHP 1.7.4.3430 Commend Approval c_system_event.php CheckComment improper authorization

Post correlati

CVE-2024-23856 | Cups Easy 1.0 URL itemlist.php cross site scripting

CVE-2025-15549 | FluentCMS up to 0.0.5 File Management cross site scripting (Issue 2404)

CVE-2025-7670 | JS Archive List Plugin up to 6.1.5 on WordPress build_sql_where sql injection

CVE-2024-5966 | Grey Opaque Plugin up to 2.0.1 on WordPress Download-Button Shortcode cross site scripting