Security Advisory

CVE-2020-15140

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-08-21 16:40:15

Last updated 2024-08-04 13:08:22

Assigner GitHub_M

State PUBLISHED

Description

In Red Discord Bot before version 3.3.11, a RCE exploit has been discovered in the Trivia module: this exploit allows Discord users with specifically crafted usernames to inject code into the Trivia modules leaderboard command. By abusing this exploit, its possible to perform destructive actions and/or access sensitive information. This critical exploit has been fixed on version 3.3.11.

← Browse all CVEs View on cve.org ↗