CVE-2019-6020

Summary

Open redirect vulnerability in PowerCMS 5.12 and earlier (PowerCMS 5.x), 4.42 and earlier (PowerCMS 4.x), and 3.293 and earlier (PowerCMS 3.x) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL.

Affected Software

VendorProductVersion RangeStatus
Alfasado Inc.PowerCMS5.12 and earlier (PowerCMS 5.x), 4.42 and earlier (PowerCMS 4.x), and 3.293 and earlier (PowerCMS 3.x)affected

Weaknesses

  • Open Redirect

ADP Enrichment

CVE Program Container

Additional References

References