3 matches found
CVE-2023-49117
PowerCMS (PowerCMS 4–6 Series; and 3 Series/EOL are affected) contains a stored cross-site scripting vulnerability (CVE-2023-49117) in the management screen. Exploitation could trigger arbitrary script execution in a logged-in user’s browser. Affected versions per JVN/Red Hat notes include PowerC...
CVE-2023-49117
PowerCMS 6 Series, 5 Series, and 4 Series contains a stored cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on a logged-in user's web browser. Note that all versions of PowerCMS 3 Series and earlier which are unsupported End-of-Life, EOL...
JVN#32646742: Multiple vulnerabilities in PowerCMS
PowerCMS provided by Alfasado Inc. contains multiple vulnerabilities listed below. Stored cross-site scripting vulnerability in the management screen CWE-79 - CVE-2023-49117 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N| Base Score: 5.4 CVSS v2|...