← voltar
CVE-2021-21433

Remote code execution on discord-recon .dirsearch and .arjun commands due to improper input validation

CVSS 9.9 CRITICALEPSS 3.0%CWE-94
Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server resulting in serious issues. This flaw is patched in 0.0.2.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H
Produtos afetados
DEMON1A · Discord-Recon

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/DEMON1A/Discord-Recon/commit/26e2a084679679cccdeeabbb6889ce120eff7e50https://github.com/DEMON1A/Discord-Recon/issues/6https://github.com/DEMON1A/Discord-Recon/security/advisories/GHSA-65fm-5x64-gv9x