Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
taocms taocms 3.0.2 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-46204
Taocms v3.0.2 exists to contain an arbitrary file read vulnerability via the path parameter. SQL injection vulnerability via taocms\include\Model\Article.php.
Taogogo Taocms 3.0.2
3.5
CVSSv2
CVE-2021-44969
Taocms v3.0.2 exists to contain a cross-site scripting (XSS) vulnerability via the Management Column component.
Taogogo Taocms 3.0.2
6.5
CVSSv2
CVE-2021-44915
Taocms 3.0.2 exists to contain a blind SQL injection vulnerability via the function Edit category.
Taogogo Taocms 3.0.2
7.5
CVSSv2
CVE-2022-25505
Taocms v3.0.2 exists to contain a SQL injection vulnerability via the id parameter in \include\Model\Category.php.
Taogogo Taocms 3.0.2
7.5
CVSSv2
CVE-2022-25578
taocms v3.0.2 allows malicious users to execute code injection via arbitrarily editing the .htaccess file.
Taogogo Taocms 3.0.2
NA
CVE-2022-36261
An arbitrary file deletion vulnerability exists in taocms 3.0.2, that allows malicious user to delete file in server when request url admin.php?action=file&ctrl=del&path=/../../../test.txt
Taogogo Taocms 3.0.2
NA
CVE-2022-36262
An issue exists in taocms 3.0.2. in the website settings that allows arbitrary php code to be injected by modifying config.php.
Taogogo Taocms 3.0.2
NA
CVE-2023-1947
A vulnerability was found in taoCMS 3.0.2. It has been classified as critical. Affected is an unknown function of the file /admin/admin.php. The manipulation leads to code injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and ma...
Taogogo Taocms 3.0.2
NA
CVE-2023-34654
taocms <=3.0.2 is vulnerable to Cross Site Scripting (XSS).
Taogogo Taocms
NA
CVE-2024-33350
Directory Traversal vulnerability in TaoCMS v.3.0.2 allows a remote malicious user to execute arbitrary code and obtain sensitive information via the include/model/file.php component.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2