CVE-2025-41396

A path traversal issue exists in file uploading feature of multiple versions of PowerCMS. Arbitrary files may be overwritten by a product user...

CVE-2019-6020

Open redirect vulnerability in PowerCMS 5.12 and earlier PowerCMS 5.x, 4.42 and earlier PowerCMS 4.x, and 3.293 and earlier PowerCMS 3.x allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL...

Alfasado PowerCMS Security Vulnerability

Alfasado PowerCMS is a content management system CMS from the Japanese company Alfasado. A security vulnerability exists in Alfasado PowerCMS that originates from an open redirection vulnerability. An unauthenticated attacker can exploit the vulnerability to redirect users to arbitrary websites v...

PT-2023-31058 · Powercms · Powercms

Name of the Vulnerable Software and Affected Versions: PowerCMS versions 4 Series through 6 Series PowerCMS versions 3 Series and earlier Description: The issue is a stored cross-site scripting vulnerability. If exploited, an arbitrary script may be executed on a logged-in user's web browser...