{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-14T21:37:32.558","vulnerabilities":[{"cve":{"id":"CVE-2023-50297","sourceIdentifier":"vultures@jpcert.or.jp","published":"2023-12-26T06:15:07.473","lastModified":"2024-11-21T08:36:48.907","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Open redirect vulnerability in PowerCMS (6 Series, 5 Series, and 4 Series) allows a remote unauthenticated attacker to redirect users to arbitrary web sites via a specially crafted URL. Note that all versions of PowerCMS 3 Series and earlier which are unsupported (End-of-Life, EOL) are also affected by this vulnerability."},{"lang":"es","value":"Vulnerabilidad de redireccionamiento abierto en PowerCMS (Series 6, 5 Series y 4 Series) permite que un atacante remoto no autenticado redirija a los usuarios a sitios web arbitrarios a través de una URL especialmente manipulada. Tenga en cuenta que todas las versiones de PowerCMS Serie 3 y anteriores que no son compatibles (End-of-Life, EOL) también se ven afectadas por esta vulnerabilidad."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-601"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:alfasado:powercms:*:*:*:*:*:*:*:*","versionEndExcluding":"4.55","matchCriteriaId":"418BFF70-45BC-4F69-85DB-7C935B80CCEE"},{"vulnerable":true,"criteria":"cpe:2.3:a:alfasado:powercms:*:*:*:*:*:*:*:*","versionStartIncluding":"5.0","versionEndExcluding":"5.25","matchCriteriaId":"4394A42A-9BE5-4927-93D7-74D99542D7D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:alfasado:powercms:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0","versionEndIncluding":"6.31","matchCriteriaId":"AEA525B4-37C1-4D8B-9755-740FD4665D0A"}]}]}],"references":[{"url":"https://jvn.jp/en/jp/JVN32646742/","source":"vultures@jpcert.or.jp","tags":["Third Party Advisory"]},{"url":"https://www.powercms.jp/news/release-powercms-202312.html","source":"vultures@jpcert.or.jp","tags":["Vendor Advisory"]},{"url":"https://jvn.jp/en/jp/JVN32646742/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.powercms.jp/news/release-powercms-202312.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}