CVE-2024-2355 | keerti1924 Secret-Coder-PHP-Project 1.0 /secret_coder.sql inclusion of sensitive information in source code

Inserito da Angelo Barbosa | Mar 9, 2024 | CVE

A vulnerability has been found in keerti1924 Secret-Coder-PHP-Project 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /secret_coder.sql. The manipulation leads to inclusion of sensitive information in source code.

This vulnerability is known as CVE-2024-2355. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2355 | keerti1924 Secret-Coder-PHP-Project 1.0 /secret_coder.sql inclusion of sensitive information in source code

Post correlati

CVE-2023-6464 | SourceCodester User Registration and Login System 1.0 /endpoint/add-user.php user sql injection

CVE-2023-49949 | Passwork up to 6.1.x 2FA improper authentication

CVE-2024-28152 | Jenkins Bitbucket Branch Source Plugin up to 866.vdea_7dcd3008e Pull Request access control

CVE-2024-30409 | Juniper Junos OS/Junos OS Evolved fibtd unusual condition (JSA79099)