Vulnerabilities

CVE-2025-29993

by Fred · 27/03/2025

The affected versions of PowerCMS allow HTTP header injection. This vulnerability can be leveraged to direct the affected product to send email with a tampered URL, such as password reset mail.

Assigner : vultures@jpcert.or.jp

More information : https://jvn.jp/en/jp/JVN39026557/

Similar

Tags: Cybersecurity Alert