Destinypwd

**Name of the Vulnerable Software and Affected Versions** taoCMS version 3.0.2 **Description** An issue in taoCMS allows for an arbitrary file read, enabling access to any files. This is achieved via the "admin.php" endpoint with specific parameters: `action` set to "file", `ctrl` set to "download", and `path` manipulated to access files outside the intended directory, such as "../../1.txt". **Recommendations** For taoCMS version 3.0.2, consider restricting access to the "admin.php" endpoint, specifically the file download functionality, until a patch is available. As a temporary workaround, avoid using the `path` parameter in the affected endpoint to minimize the risk of exploitation.