CVE-2022-23316
Published
CVSS v3
4.9
MEDIUM
CVSS v2
4
MEDIUM
Affected
1
PROJECT
Description
An issue was discovered in taoCMS v3.0.2. There is an arbitrary file read vulnerability that can read any files via admin.php?action=file&ctrl=download&path=../../1.txt.
taoCMS is an incredible tiny CMS( Content Management System) , writen in PHP and support MySQL/Sqlite as the database(MIT License)
GitHub