Vulnerabilities > Alfasado > Powercms > 5.21
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-26 | CVE-2023-49117 | Cross-site Scripting vulnerability in Alfasado Powercms PowerCMS (6 Series, 5 Series, and 4 Series) contains a stored cross-site scripting vulnerability. | 5.4 |
| 2023-12-26 | CVE-2023-50297 | Open Redirect vulnerability in Alfasado Powercms Open redirect vulnerability in PowerCMS (6 Series, 5 Series, and 4 Series) allows a remote unauthenticated attacker to redirect users to arbitrary web sites via a specially crafted URL. | 6.1 |
| 2022-09-08 | CVE-2022-33941 | OS Command Injection vulnerability in Alfasado Powercms PowerCMS XMLRPC API provided by Alfasado Inc. | 9.8 |