Filtered by vendor Taogogo
Subscriptions
Filtered by product Taocms
Subscriptions
Total
24 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-23380 | 1 Taogogo | 1 Taocms | 2024-08-03 | 8.8 High |
There is a SQL injection vulnerability in the background of taocms 3.0.2 in parameter id:action=admin&id=2&ctrl=edit. | ||||
CVE-2022-23316 | 1 Taogogo | 1 Taocms | 2024-08-03 | 4.9 Medium |
An issue was discovered in taoCMS v3.0.2. There is an arbitrary file read vulnerability that can read any files via admin.php?action=file&ctrl=download&path=../../1.txt. | ||||
CVE-2023-34654 | 1 Taogogo | 1 Taocms | 2024-08-02 | 6.1 Medium |
taocms <=3.0.2 is vulnerable to Cross Site Scripting (XSS). | ||||
CVE-2023-1947 | 1 Taogogo | 1 Taocms | 2024-08-02 | 6.3 Medium |
A vulnerability was found in taoCMS 3.0.2. It has been classified as critical. Affected is an unknown function of the file /admin/admin.php. The manipulation leads to code injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-225330 is the identifier assigned to this vulnerability. |