41 matches found
EUVD-2021-16072
Malware in sbrugna...
CVE-2021-29461
Discord Recon Server is a bot that allows one to do one's reconnaissance process from one's Discord. A vulnerability in Discord Recon Server prior to 0.0.3 could be exploited to read internal files from the system and write files into the system resulting in remote code execution. This issue has...
CVE-2021-21433
Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server resulting in serious issues. This flaw is patched in 0.0.2...
CVE-2024-21663
Discord-Recon is a Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server. Discord-Recon is vulnerable to remote code execution. An attacker is able to execute shell commands in the server without having an admin role. This vulnerability h...
Remote code execution
Discord-Recon is a Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server. Discord-Recon is vulnerable to remote code execution. An attacker is able to execute shell commands in the server without having an admin role. This vulnerability h...
Discord-Recon Command Injection Vulnerability
Discord-Recon is a bot application by the individual developer Mohamed Dief. Discord-Recon version 0.0.8-beta suffers from a command injection vulnerability that stems from the presence of a remote code execution RCE vulnerability...
CVE-2024-21663 Remote code execution on ReconServer due to improper input sanitization on the prips command
Discord-Recon is a Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server. Discord-Recon is vulnerable to remote code execution. An attacker is able to execute shell commands in the server without having an admin role. This vulnerability h...
CVE-2024-21663 Remote code execution on ReconServer due to improper input sanitization on the prips command
Discord-Recon is a Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server. Discord-Recon is vulnerable to remote code execution. An attacker is able to execute shell commands in the server without having an admin role. This vulnerability h...
CVE-2024-21663
CVE-2024-21663 affects the Discord-Recon bot. The affected component is the bot’s ability to execute shell commands via the server without requiring admin privileges, constituting a remote code execution (RCE) vulnerability. The issue is documented as fixed in version 0.0.8; versions prior to 0.0...
CVE-2024-21663 Remote code execution on ReconServer due to improper input sanitization on the prips command
Discord-Recon is a Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server. Discord-Recon is vulnerable to remote code execution. An attacker is able to execute shell commands in the server without having an admin role. This vulnerability h...
PT-2024-19005 · Unknown · Discord-Recon
Name of the Vulnerable Software and Affected Versions: Discord-Recon versions prior to 0.0.8 Description: Discord-Recon is a Discord bot created to automate bug bounty recon, automated scans, and information gathering via a Discord server. It is vulnerable to remote code execution, allowing an...
Mohamed Dief Discord-Recon Code Injection Vulnerability (CNVD-2021-37748)
Mohamed Dief Discord-Recon is a Mohamed Dief open source application. It is used to perform the reconnaissance process b from Discord. A code injection vulnerability exists in Discord-Recon version 0.0.3 and earlier versions, which can be exploited by a remote attacker to be able to overwrite any...
Path Traversal in demon1a/discord-recon
✍️ Description Scanning internal git directories leaks using Improper input validation in truffleHog function urlHost = urlparseargument.netloc if urlHost != "github.com" and urlHost != "gitlab.com": await ctx.send"You're trying to scan unallowed URL, please use a github/gitlab URL." return The...
Discord Recon Server Code Injection Vulnerability
Discord Recon Server is an AI robot from Discord USA. Discord Recon Server version 0.0.1 suffers from a code injection vulnerability that originates from remote code execution and can be exploited by a remote attacker to execute commands on the server...
CVE-2021-29465
Discord-Recon is a bot for the Discord chat service. Versions of Discord-Recon 0.0.3 and prior contain a vulnerability in which a remote attacker is able to overwrite any file on the system with the command results. This can result in remote code execution when the user overwrite important files ...
CVE-2021-29465
Discord-Recon is a bot for the Discord chat service. Versions of Discord-Recon 0.0.3 and prior contain a vulnerability in which a remote attacker is able to overwrite any file on the system with the command results. This can result in remote code execution when the user overwrite important files ...
CVE-2021-29466
Discord-Recon is a bot for the Discord chat service. In versions of Discord-Recon 0.0.3 and prior, a remote attacker is able to read local files from the server that can disclose important information. As a workaround, a bot maintainer can locate the file app.py and add .replace'..', '' into the...
CVE-2021-29466
Discord-Recon is a bot for the Discord chat service. In versions of Discord-Recon 0.0.3 and prior, a remote attacker is able to read local files from the server that can disclose important information. As a workaround, a bot maintainer can locate the file app.py and add .replace'..', '' into the...
Remote code execution
Discord-Recon is a bot for the Discord chat service. Versions of Discord-Recon 0.0.3 and prior contain a vulnerability in which a remote attacker is able to overwrite any file on the system with the command results. This can result in remote code execution when the user overwrite important files ...
Design/Logic Flaw
Discord-Recon is a bot for the Discord chat service. In versions of Discord-Recon 0.0.3 and prior, a remote attacker is able to read local files from the server that can disclose important information. As a workaround, a bot maintainer can locate the file app.py and add .replace'..', '' into the...