← back
CVE-2021-21433

Remote code execution on discord-recon .dirsearch and .arjun commands due to improper input validation

CVSS 9.9 CRITICALEPSS 3.0%CWE-94
Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server resulting in serious issues. This flaw is patched in 0.0.2.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H
Affected products
DEMON1A · Discord-Recon

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/DEMON1A/Discord-Recon/commit/26e2a084679679cccdeeabbb6889ce120eff7e50https://github.com/DEMON1A/Discord-Recon/issues/6https://github.com/DEMON1A/Discord-Recon/security/advisories/GHSA-65fm-5x64-gv9x