Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
taocms taocms 3.0.2 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2022-23387
An issue exists in taocms 3.0.2. This is a SQL blind injection that can obtain database data through the Comment Update field.
Taocms Taocms 3.0.2
7.5
CVSSv2
CVE-2022-25505
Taocms v3.0.2 exists to contain a SQL injection vulnerability via the id parameter in \include\Model\Category.php.
Taogogo Taocms 3.0.2
4
CVSSv2
CVE-2021-46203
Taocms v3.0.2 exists to contain an arbitrary file read vulnerability via the path parameter.
Taogogo Taocms 3.0.2
4
CVSSv2
CVE-2022-23316
An issue exists in taoCMS v3.0.2. There is an arbitrary file read vulnerability that can read any files via admin.php?action=file&ctrl=download&path=../../1.txt.
Taogogo Taocms 3.0.2
6.5
CVSSv2
CVE-2022-23380
There is a SQL injection vulnerability in the background of taocms 3.0.2 in parameter id:action=admin&id=2&ctrl=edit.
Taogogo Taocms 3.0.2
7.5
CVSSv2
CVE-2022-23880
An arbitrary file upload vulnerability in the File Management function module of taoCMS v3.0.2 allows malicious users to execute arbitrary code via a crafted PHP file.
Taogogo Taocms 3.0.2
NA
CVE-2023-1947
A vulnerability was found in taoCMS 3.0.2. It has been classified as critical. Affected is an unknown function of the file /admin/admin.php. The manipulation leads to code injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and ma...
Taogogo Taocms 3.0.2
NA
CVE-2022-46998
An issue in the website background of taocms v3.0.2 allows malicious users to execute a Server-Side Request Forgery (SSRF).
Taogogo Taocms 3.0.2
6.5
CVSSv2
CVE-2021-44915
Taocms 3.0.2 exists to contain a blind SQL injection vulnerability via the function Edit category.
Taogogo Taocms 3.0.2
6.4
CVSSv2
CVE-2021-45015
taocms 3.0.2 is vulnerable to arbitrary file deletion via taocms\include\Model\file.php from line 60 to line 72.
Taogogo Taocms 3.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »