Описание
Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path parameter. SQL injection vulnerability via taocms\include\Model\Article.php.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:taogogo:taocms:3.0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 49%
0.00261
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-89
Связанные уязвимости
github
около 4 лет назад
Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path parameter. SQL injection vulnerability via taocms\include\Model\Article.php.
EPSS
Процентиль: 49%
0.00261
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-89