Z-BlogPHP Arbitrary Code Execution Vulnerability

An arbitrary code execution vulnerability exists in Z-BlogPHP versions through 1.7.3. The issue arises from a file upload vulnerability in the Z-Blog admin panel, where the system fails to properly validate theme files before allowing them to be uploaded. This lack of scrutiny enables attackers to inject malicious code into a theme file, which is then executed by the server. Exploitation of this vulnerability allows attackers to execute arbitrary code on the host machine, potentially leading to full control over the compromised system.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the server where Z-BlogPHP is hosted.

Reproduction

To reproduce this vulnerability, log into the Z-BlogPHP admin panel and upload a crafted ZBA theme file that contains malicious code. Once uploaded, the file will be executed by the server, and the injected code will be executed, potentially leading to a web shell being placed on the server.