The affected versions of PowerCMS allow HTTP header injection. This vulnerability can be leveraged to direct the affected product to send email with a tampered URL, such as password reset mail.
https://www.powercms.jp/news/release-powercms-661-528-459.html