CVE-2022-36262
CVE-2022-36262 affects taocms 3.0.2, where the website settings feature allows arbitrary PHP code injection by modifying config.php. Multiple sources corroborate this vulnerability and describe the root cause as improper handling of config.php via the settings interface, enabling code execution w...