CVE-2023-50297 Information

Description

Open redirect vulnerability in PowerCMS (6 Series 5 Series and 4 Series) allows a remote unauthenticated attacker to redirect users to arbitrary web sites via a specially crafted URL. Note that all versions of PowerCMS 3 Series and earlier which are unsupported (End-of-Life EOL) are also affected by this vulnerability.

Reference

https://www.powercms.jp/news/release-powercms-202312.html https://jvn.jp/en/jp/JVN32646742/