CVE-2023-50297

Name of the Vulnerable Software and Affected Versions PowerCMS versions 4 Series through 6 Series PowerCMS versions 3 Series and earlier

Description The issue is related to an open redirect vulnerability. It allows a remote attacker to redirect users to arbitrary web sites via a specially crafted URL.

Recommendations For PowerCMS versions 4 Series through 6 Series, update to a version that includes a fix for the open redirect vulnerability. For PowerCMS versions 3 Series and earlier, consider disabling the use of open redirects or restricting access to minimize the risk of exploitation, as these versions are unsupported. As a temporary workaround, consider validating URLs to prevent redirects to arbitrary web sites until a patch is available.