Skip to main content

Red Discord Bot

3 CVEs product

Monthly

CVE-2020-15278 PyPI HIGH PATCH This Week

Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in the Mod module. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Privilege Escalation Authentication Bypass Red Discord Bot
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
CVE-2020-15147 PyPI HIGH PATCH This Week

Red Discord Bot before versions 3.3.12 and 3.4 has a Remote Code Execution vulnerability in the Streams module. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Code Injection Red Discord Bot
NVD GitHub
CVSS 3.1
8.5
EPSS
2.0%
CVE-2020-15140 PyPI CRITICAL PATCH Act Now

In Red Discord Bot before version 3.3.11, a RCE exploit has been discovered in the Trivia module: this exploit allows Discord users with specifically crafted usernames to inject code into the Trivia. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Red Discord Bot
NVD GitHub
CVSS 3.1
9.6
EPSS
0.9%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in the Mod module. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Privilege Escalation Authentication Bypass Red Discord Bot
NVD GitHub
EPSS 2% CVSS 8.5
HIGH PATCH This Week

Red Discord Bot before versions 3.3.12 and 3.4 has a Remote Code Execution vulnerability in the Streams module. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Code Injection Red Discord Bot
NVD GitHub
EPSS 1% CVSS 9.6
CRITICAL PATCH Act Now

In Red Discord Bot before version 3.3.11, a RCE exploit has been discovered in the Trivia module: this exploit allows Discord users with specifically crafted usernames to inject code into the Trivia. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Red Discord Bot
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy