Recently, we received two security reports from Wuyun, pointing out that there are major security vulnerabilities in z-blogphp. After the development team confirmed that the vulnerability does exist, the patch has been released to the update server, please update as soon as possible!!
Enter the z-blogphp background application center, enter the [system update and verification] item, and click [verify the current version of the system core file] to update the relevant files.
Delete ZB_ Install directory.
If users of version 1.4 can't update and verify online, please download the latest installation package from the official website and upload and cover it with FTP once.
Due to our negligence, we are very sorry for the security threat to your website. In the future, we will pay more attention to the security requirements in PHP development.
Thank you very much phith0n And Rain The safety report provided by the two also welcome other white hats to help us to ensure safety.