2 matches found
CVE-2022-23880
An arbitrary file upload vulnerability in the File Management function module of taoCMS v3.0.2 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2022-23880
The CVE-2022-23880 entry concerns taoCMS v3.0.2, where the File Management function module is vulnerable to an arbitrary file upload. A crafted PHP file can be uploaded to achieve arbitrary code execution on the affected system. The issue is caused by improper validation of uploaded files, enabli...