Phoenixcart Ce Phoenix Cart — known CVE vulnerabilities
Every CVE whose affected-product data names Phoenixcart Ce Phoenix Cart, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-25415 — CVSS 7.2 (high): A remote code execution (RCE) vulnerability in /admin/define_language.php of CE Phoenix v1.0.8.20 allows attackers to execute arbitrary PHP…
CVE-2025-47289 — CVSS 6.3 (medium): CE Phoenix is a free, open-source eCommerce platform. A stored cross-site scripting (XSS) vulnerability was discovered in CE Phoenix…