Open redirect vulnerability in PowerCMS 5.12 and earlier (PowerCMS 5.x), 4.42 and earlier (PowerCMS 4.x), and 3.293 and earlier (PowerCMS 3.x) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL.
References
Link | Resource |
---|---|
http://jvn.jp/en/jp/JVN34634458/index.html | Third Party Advisory |
https://www.powercms.jp/news/release-powercms-201910.html | Release Notes Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: jpcert
Published: 2019-12-26T15:16:50
Updated: 2019-12-26T15:16:50
Reserved: 2019-01-10T00:00:00
Link: CVE-2019-6020
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-12-26T16:15:11.700
Modified: 2020-01-06T18:01:09.127
Link: CVE-2019-6020
JSON object: View
Redhat Information
No data.
CWE