An issue was discovered in taocms 3.0.2. in the website settings that allows arbitrary php code to be injected by modifying config.php.Referenceshttps://github.com/taogogo/taocmshttps://github.com/taogogo/taocms/issues/34https://github.com/taogogo/taocms/issues/34?by=xboy%28topsec%29