Vulnerabilities > Taogogo > Taocms > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-12-14 CVE-2021-45014 SQL Injection vulnerability in Taogogo Taocms 3.0.2
There is an upload sql injection vulnerability in the background of taocms 3.0.2 in parameter id:action=cms&ctrl=update&id=26
network
low complexity
taogogo CWE-89
critical
 9.8
9.8
2019-02-11 CVE-2019-7720 Code Injection vulnerability in Taogogo Taocms
taocms through 2014-05-24 allows eval injection by placing PHP code in the install.php db_name parameter and then making a config.php request.
network
low complexity
taogogo CWE-94
critical
 9.8
9.8