taocms v3.0.2 allows malicious users to execute code injection via arbitrarily editing the .htaccess file.
taogogo taocms 3.0.2