CVE-2024-2355

Name of the Vulnerable Software and Affected Versions keerti1924 Secret-Coder-PHP-Project version 1.0

Description A vulnerability has been found in the keerti1924 Secret-Coder-PHP-Project, affecting an unknown functionality of the file /secret coder.sql. The manipulation leads to the inclusion of sensitive information in the source code. The attack can be launched remotely, with a rather high complexity and difficult exploitation. The exploit has been disclosed to the public and may be used.

Recommendations For keerti1924 Secret-Coder-PHP-Project version 1.0, consider restricting access to the /secret coder.sql file to minimize the risk of exploitation. As a temporary workaround, avoid using the affected functionality until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.