Vulnerabilities > Taogogo > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-05 | CVE-2023-34654 | Cross-site Scripting vulnerability in Taogogo Taocms 2.5/3.0.1/3.0.2 taocms <=3.0.2 is vulnerable to Cross Site Scripting (XSS). | 6.1 |
| 2023-06-20 | CVE-2020-20725 | Cross-site Scripting vulnerability in Taogogo Taocms 2.5 Cross Site Scripting vulnerability in taogogo taoCMS v.2.5 beta5.1 allows remote attacker to execute arbitrary code via the name field in admin.php. | 6.1 |
| 2022-02-10 | CVE-2021-44969 | Cross-site Scripting vulnerability in Taogogo Taocms 3.0.2 Taocms v3.0.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the Management Column component. | 4.8 |
| 2022-02-04 | CVE-2021-44983 | Files or Directories Accessible to External Parties vulnerability in Taogogo Taocms 3.0.1 In taocms 3.0.1 after logging in to the background, there is an Arbitrary file download vulnerability at the File Management column. | 4.9 |
| 2022-02-04 | CVE-2022-23316 | Files or Directories Accessible to External Parties vulnerability in Taogogo Taocms 3.0.2 An issue was discovered in taoCMS v3.0.2. | 4.9 |
| 2022-01-19 | CVE-2021-46203 | Path Traversal vulnerability in Taogogo Taocms 3.0.2 Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path parameter. | 6.5 |
| 2021-12-02 | CVE-2021-25785 | Cross-site Scripting vulnerability in Taogogo Taocms 2.5 Taocms v2.5Beta5 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Management column. | 4.8 |