Vulnerabilities > Alfasado

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-26	CVE-2023-49117	Cross-site Scripting vulnerability in Alfasado Powercms PowerCMS (6 Series, 5 Series, and 4 Series) contains a stored cross-site scripting vulnerability. network low complexity alfasado CWE-79	5.4
2023-12-26	CVE-2023-50297	Open Redirect vulnerability in Alfasado Powercms Open redirect vulnerability in PowerCMS (6 Series, 5 Series, and 4 Series) allows a remote unauthenticated attacker to redirect users to arbitrary web sites via a specially crafted URL. network low complexity alfasado CWE-601	6.1
2022-09-08	CVE-2022-33941	OS Command Injection vulnerability in Alfasado Powercms PowerCMS XMLRPC API provided by Alfasado Inc. network low complexity alfasado CWE-78 critical	9.8
2021-11-24	CVE-2021-20850	OS Command Injection vulnerability in Alfasado Powercms PowerCMS XMLRPC API of PowerCMS 5.19 and earlier, PowerCMS 4.49 and earlier, PowerCMS 3.295 and earlier, and PowerCMS 2 Series (End-of-Life, EOL) allows a remote attacker to execute an arbitrary OS command via unspecified vectors. network low complexity alfasado CWE-78 critical	9.8
2019-12-26	CVE-2019-6020	Open Redirect vulnerability in Alfasado Powercms Open redirect vulnerability in PowerCMS 5.12 and earlier (PowerCMS 5.x), 4.42 and earlier (PowerCMS 4.x), and 3.293 and earlier (PowerCMS 3.x) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. network low complexity alfasado CWE-601	6.1

Vulnerabilities > Alfasado {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Alfasado"}]}