Taocms 3.0.2 was discovered to contain a blind SQL injection vulnerability via the function Edit category.