CVE-2017-16207

Name of the Vulnerable Software and Affected Versions: discordi.js versions (affected versions not specified)

Description: The issue concerns a malicious module named discordi.js, which is based on the discord.js library. This module is designed to exfiltrate login tokens to pastebin. It attempts to discover and exfiltrate a user's Discord credentials, sending them to pastebin. The estimated number of potentially affected devices worldwide is not available.

Recommendations: Do not install or use the discordi.js module. Any users that logged into Discord using this library will need to change their credentials.