Taocms

taocms

Vendor: Taogogo • 25 CVEs

CVEs (25)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-45014 1Taogogo 1Taocms Nov 21, 2024 Dec 14, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 There is an upload sql injection vulnerability in the background of taocms 3.0.2 in parameter id:action=cms&ctrl=update&id=26
CVE-2021-25785 1Taogogo 1Taocms Nov 21, 2024 Dec 2, 2021 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 Taocms v2.5Beta5 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Management column.
CVE-2021-25784 1Taogogo 1Taocms Nov 21, 2024 Dec 2, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Taocms v2.5Beta5 was discovered to contain a blind SQL injection vulnerability via the function Edit Article.
CVE-2021-25783 1Taogogo 1Taocms Nov 21, 2024 Dec 2, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Taocms v2.5Beta5 was discovered to contain a blind SQL injection vulnerability via the function Article Search.
CVE-2019-7720 1Taogogo 1Taocms Nov 21, 2024 Feb 11, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 taocms through 2014-05-24 allows eval injection by placing PHP code in the install.php db_name parameter and then making a config.php request.