CVE-2017-20178

Name of the Vulnerable Software and Affected Versions Codiad version 2.8.0

Description A vulnerability was found in the function saveJSON of the file components/install/process.php. The manipulation of the argument data leads to information disclosure. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult.

Recommendations For Codiad version 2.8.0, upgrade to version 2.8.1 to address this issue. As a temporary workaround, consider restricting access to the saveJSON function in the components/install/process.php file until the upgrade is applied.