To avoid scanning the website, please update zblogPHP to 1.7.3.3260 in time and enable two-step login
Improve Z-BlogPHP login mechanism (add CSRF Token verification and login verification code) Cracking The difficulty of password entering the background improves the login security;
Improve the upload mechanism of developers' applications and improve the security of developers' uploaded applications.
In addition, we recommend users to do the following to protect the security of their websites:
Update to the latest version of Z-BlogPHP as soon as possible, and open the website login verification code;
Install Token Logger plug-in unit , enable administrator login two-step verification;
Improve password complexity, and do not use common passwords that are easy to guess;
Check the website directory, check whether there are unknown files, and delete potential viruses in a timely manner;
Enable the "security mode" of the application center client to enhance security;
We refuse to install Z-BlogPHP applications from unknown sources. It is recommended to obtain applications from the official application center.