Medium severity5.4NVD Advisory· Published Dec 26, 2023· Updated Jun 17, 2026
CVE-2023-49117
CVE-2023-49117
Description
PowerCMS (6 Series, 5 Series, and 4 Series) contains a stored cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on a logged-in user's web browser. Note that all versions of PowerCMS 3 Series and earlier which are unsupported (End-of-Life, EOL) are also affected by this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 6.31 and earlier
Patches
Vulnerability mechanics
References
2- jvn.jp/en/jp/JVN32646742/nvdThird Party Advisory
- www.powercms.jp/news/release-powercms-202312.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.