Tad Uploader edit book list function is vulnerable to authorization bypass, thus remote attackers can use the function to amend the folder names in the book list without logging in.Referenceshttps://www.twcert.org.tw/tw/cp-132-5175-a2f8d-1.html
