An arbitrary file upload vulnerability in taocms v3.0.2 allows attackers to execute arbitrary code via a crafted PHP file. This vulnerability is exploited via manipulation of the upext variable at /include/Model/Upload.php.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/taogogo/taocms/issues/35 |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2023-01-30T00:00:00
Updated: 2024-08-03T15:02:36.672Z
Reserved: 2022-12-29T00:00:00
Link: CVE-2022-48006

No data.

Status : Modified
Published: 2023-01-30T22:15:12.463
Modified: 2024-11-21T07:32:41.027
Link: CVE-2022-48006

No data.