alfasado powercms vulnerabilities and exploits

(subscribe to this query)

NA

PowerCMS XMLRPC API provided by Alfasado Inc. contains a command injection vulnerability. Sending a specially crafted message by POST method to PowerCMS XMLRPC API may allow arbitrary Perl script execution, and an arbitrary OS command may be executed through it. Affected products...

Alfasado Powercms

516

VMScore

Open redirect vulnerability in PowerCMS 5.12 and previous versions (PowerCMS 5.x), 4.42 and previous versions (PowerCMS 4.x), and 3.293 and previous versions (PowerCMS 3.x) allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a s...

Alfasado Powercms

668

VMScore

PowerCMS XMLRPC API of PowerCMS 5.19 and previous versions, PowerCMS 4.49 and previous versions, PowerCMS 3.295 and previous versions, and PowerCMS 2 Series (End-of-Life, EOL) allows a remote malicious user to execute an arbitrary OS command via unspecified vectors.

Alfasado Powercms

NA

Open redirect vulnerability in PowerCMS (6 Series, 5 Series, and 4 Series) allows a remote unauthenticated malicious user to redirect users to arbitrary web sites via a specially crafted URL. Note that all versions of PowerCMS 3 Series and previous versions which are unsupported ...

Alfasado Powercms

NA

PowerCMS (6 Series, 5 Series, and 4 Series) contains a stored cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on a logged-in user's web browser. Note that all versions of PowerCMS 3 Series and previous versions whic...

Alfasado Powercms

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook