High severity7.2NVD Advisory· Published Feb 16, 2024· Updated Jun 17, 2026
CVE-2024-25415
CVE-2024-25415
Description
A remote code execution (RCE) vulnerability in /admin/define_language.php of CE Phoenix v1.0.8.20 allows attackers to execute arbitrary PHP code via injecting a crafted payload into the file english.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- CE/Phoenixdescription
- Range: = 1.0.8.20
Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/175913/CE-Phoenix-1.0.8.20-Remote-Command-Execution.htmlnvdExploitThird Party Advisory
- vulners.com/zdt/1337DAY-ID-39172nvdExploitThird Party Advisory
- www.exploit-db.com/exploits/51957nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.