4 matches found
CVE-2022-36261
An arbitrary file deletion vulnerability was discovered in taocms 3.0.2, that allows attacker to delete file in server when request url admin.php?action=file=del=/../../../test.txt...
CVE-2022-36261
An arbitrary file deletion vulnerability was discovered in taocms 3.0.2, that allows attacker to delete file in server when request url admin.php?action=file&ctrl=del&path=/../../../test.txt...
CVE-2022-36261
An arbitrary file deletion vulnerability was discovered in taocms 3.0.2, that allows attacker to delete file in server when request url admin.php?action=file&ctrl=del&path=/../../../test.txt...
CVE-2022-36261
CVE-2022-36261 affects taocms 3.0.2. The connected sources describe an arbitrary file deletion flaw exploitable via a crafted request to admin.php?action=file&ctrl=del&path=/../../../test.txt, indicating a path traversal issue that can delete server files. The NVD notes a CVSS v3.1 base score of ...