Published: 2021/11/24 Last Updated: 2021/12/17

Information from Alfasado Inc.

Vulnerability ID:JVN#17645965
Title:PowerCMS XMLRPC API vulnerable to OS command injection
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.

We provide information on this issue at the following URL
https://www.powercms.jp/news/release-patch-xmlrpc-api-202110.html
https://www.powercms.jp/news/release-fix-xmlrpc-api-202112.html

update history

2021/12/17