CVE-2021-46203: Path Traversal
First published: Wed Jan 19 2022(Updated: )
Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| taogogo taoCMS | =3.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-46203?
CVE-2021-46203 is an arbitrary file read vulnerability in Taocms v3.0.2, which can be exploited via the path parameter.
What is the severity of CVE-2021-46203?
CVE-2021-46203 has a severity level of medium, with a CVSS score of 6.5.
How can this vulnerability affect Taocms v3.0.2?
This vulnerability allows an attacker to read arbitrary files on the system by exploiting the path parameter in Taocms v3.0.2.
Is there a fix available for CVE-2021-46203?
At the moment, there is no specific fix available for CVE-2021-46203. It is recommended to update to a newer version or apply any patches released by the vendor.
Where can I find more information about CVE-2021-46203?
You can find more information about CVE-2021-46203 on the GitHub issue: https://github.com/taogogo/taocms/issues/13
- collector/nvd-index
- vendor/taogogo
- canonical/taogogo taocms
- version/taogogo taocms/3.0.2