CVE-2024-26521
Description
HTML Injection vulnerability in CE Phoenix v1.0.8.20 and before allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted payload to the english.php component.
NVD
Severity: N/A
CVE ID: CVE-2024-26521
CVSS Score: N/A
CVSS Metrics: NVD assessment not yet provided.
Proof Of Concept
hackervegas001
Html Injection vulnearbility in CE-Phoenix-v1.0.8.20 where malicious HTML code is inserted into a website. This can lead to a variety of issues, from minor website defacement to serious data breaches.
Refrence: GitHub