CVE-2023-50297

🗓️ 26 Dec 2023 05:53:48Reported by jpcertType

Open redirect vulnerability in PowerCMS allows remote attacker to redirect users via crafted URL

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2023-50297	26 Dec 202307:26	–	circl
CNNVD	Alfasado PowerCMS Security Vulnerability	26 Dec 202300:00	–	cnnvd
Cvelist	CVE-2023-50297	26 Dec 202305:53	–	cvelist
Japan Vulnerability Notes	JVN#32646742: Multiple vulnerabilities in PowerCMS	26 Dec 202300:00	–	jvn
Japan Vulnerability Notes	Multiple vulnerabilities in PowerCMS	26 Dec 202307:46	–	jvn
NVD	CVE-2023-50297	26 Dec 202306:15	–	nvd
OSV	CVE-2023-50297	26 Dec 202306:15	–	osv
Prion	Open redirect	26 Dec 202306:15	–	prion
Positive Technologies	PT-2023-8311 · Powercms · Powercms	25 Dec 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-50297	9 Jan 202612:37	–	redhatcve

NVD

Vulners

Node

alfasado powercmsRange<4.55

alfasado powercmsRange5.0–5.25

alfasado powercmsRange6.0–6.31

[
  {
    "vendor": "Alfasado Inc.",
    "product": "PowerCMS (PowerCMS 6 Series)",
    "versions": [
      {
        "version": "6.31 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Alfasado Inc.",
    "product": "PowerCMS (PowerCMS 5 Series)",
    "versions": [
      {
        "version": "5.24 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Alfasado Inc.",
    "product": "PowerCMS (PowerCMS 4 Series)",
    "versions": [
      {
        "version": "4.54 and earlier",
        "status": "affected"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN32646742/
powercms	www.powercms.jp/news/release-powercms-202312.html

21 Nov 2024 08:36Current

6.2Medium risk

Vulners AI Score6.2

CVSS 3.16.1

EPSS0.00631

SSVC

CWE-601