CVE-2024-2355 | keerti1924 Secret-Coder-PHP-Project 1.0 /secret_coder.sql inclusion of sensitive information in source code

Inserito da Angelo Barbosa | Mar 9, 2024 | CVE

A vulnerability has been found in keerti1924 Secret-Coder-PHP-Project 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /secret_coder.sql. The manipulation leads to inclusion of sensitive information in source code.

This vulnerability is known as CVE-2024-2355. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2355 | keerti1924 Secret-Coder-PHP-Project 1.0 /secret_coder.sql inclusion of sensitive information in source code

Post correlati

CVE-2024-27771 | Unitronics Unistream Unilogic prior 1.35.227 path traversal

CVE-2024-7657 | Gila CMS 1.10.9 HTTP POST Request page content cross site scripting

CVE-2024-24592 | Allegro AI ClearML Fileserver direct request

CVE-2023-23882 | Brainstorm Force Ultimate Addons for Beaver Builder Lite Plugin up to 1.5.5 on WordPress authorization