Browse all 8 CVE security advisories affecting Phoenix. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Phoenix serves as a widely used open-source content management system powering websites and digital experiences. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with 8 CVEs documented. The platform's modular architecture introduces potential risks through third-party extensions. In 2021, a critical authentication bypass flaw allowed unauthorized access to administrative functions. Regular security patches are essential due to its popularity making it a target for automated attacks. Organizations should implement input validation and access controls to mitigate common exploitation patterns.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-5058 | Phoenix SecureCore 输入验证错误漏洞 — SecureCore™ Technology™ 4CWE-20 | 8.4 | - | 2023-12-07 |
| CVE-2023-31100 | Phoenix SecureCore 安全漏洞 — SecureCore™ Technology™ 4CWE-284 | 8.4 | High | 2023-11-14 |
This page lists every published CVE security advisory associated with Phoenix. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.