PT-2021-18256 · Unknown · Red Discord Bot+1
Dav-Git
·
Published
2021-05-10
·
Updated
2022-10-25
·
CVE-2021-29501
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions:
Ticketer cog versions prior to 1.0.1
Description:
A vulnerability has been found in the Ticketer cog, a command-based ticket system plugin for the red Discord bot, allowing Discord users to expose sensitive information.
Recommendations:
For versions prior to 1.0.1, upgrade to version 1.0.1 as soon as possible.
As a temporary workaround, consider unloading the Ticketer cog to disable the exploitable code.
Fix
Command Injection
Special Elements Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ticketer Cog
Red Discord Bot