Taocms Security Vulnerabilities and Issues — Taocms CVE List

Lucene search

TaogogoTaocms

3 matches found

CVE•added 2022/02/10 11:15 p.m.•84 views

CVE-2021-44969

Taocms v3.0.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the Management Column component.

4.8CVSS5AI score0.00219EPSS

CVE•added 2022/02/04 12:15 p.m.•69 views

CVE-2022-23316

An issue was discovered in taoCMS v3.0.2. There is an arbitrary file read vulnerability that can read any files via admin.php?action=file&ctrl=download&path=../../1.txt.

4.9CVSS5.2AI score0.00329EPSS

CVE•added 2022/02/04 2:15 p.m.•54 views

CVE-2021-44983

In taocms 3.0.1 after logging in to the background, there is an Arbitrary file download vulnerability at the File Management column.

4.9CVSS5.1AI score0.00639EPSS