CVE-2024-26136

Name of the Vulnerable Software and Affected Versions ElectronCord (affected versions not specified)

Description ElectronCord is a bot management tool for Discord. A commit exposes an account access token in the config.json file. Malicious actors could potentially exploit this to gain unauthorized access to sensitive information or perform malicious actions on behalf of the repository owner. It is unknown whether the owner of the repository has rotated the token or taken other mitigation steps aside from informing users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.