14 matches found
EUVD-2023-34992
Malicious code in bioql PyPI...
Malicious code in test-mlw2-ouzel-gipsy-umbra-wulls (npm)
The package test-mlw2-ouzel-gipsy-umbra-wulls was found to contain malicious code...
Malicious code in test-mlw2-ewers-gipsy (npm)
The package test-mlw2-ewers-gipsy was found to contain malicious code...
MAL-2025-35299 Malicious code in test-mlw2-ewers-gipsy (npm)
The package test-mlw2-ewers-gipsy was found to contain malicious code...
MAL-2025-35925 Malicious code in test-mlw2-ouzel-gipsy-umbra-wulls (npm)
The package test-mlw2-ouzel-gipsy-umbra-wulls was found to contain malicious code...
CVE-2023-30621
Gipsy is a multi-purpose discord bot which aim to be as modular and user-friendly as possible. In versions prior to 1.3 users can run command on the host machine with sudoer permission. The !ping command when provided with an IP or hostname used to run a bash ping without verification that the IP...
CVE-2023-30621
Gipsy is a multi-purpose discord bot which aim to be as modular and user-friendly as possible. In versions prior to 1.3 users can run command on the host machine with sudoer permission. The !ping command when provided with an IP or hostname used to run a bash ping without verification that the IP...
Command injection
Gipsy is a multi-purpose discord bot which aim to be as modular and user-friendly as possible. In versions prior to 1.3 users can run command on the host machine with sudoer permission. The !ping command when provided with an IP or hostname used to run a bash ping without verification that the IP...
CVE-2023-30621
Gipsy (Curiosity Open Source)
CVE-2023-30621 OS command injection in Gipsy
Gipsy is a multi-purpose discord bot which aim to be as modular and user-friendly as possible. In versions prior to 1.3 users can run command on the host machine with sudoer permission. The !ping command when provided with an IP or hostname used to run a bash ping without verification that the IP...
CVE-2023-30621 OS command injection in Gipsy
Gipsy is a multi-purpose discord bot which aim to be as modular and user-friendly as possible. In versions prior to 1.3 users can run command on the host machine with sudoer permission. The !ping command when provided with an IP or hostname used to run a bash ping without verification that the IP...
CVE-2023-30621 OS command injection in Gipsy
Gipsy is a multi-purpose discord bot which aim to be as modular and user-friendly as possible. In versions prior to 1.3 users can run command on the host machine with sudoer permission. The !ping command when provided with an IP or hostname used to run a bash ping without verification that the IP...
PT-2023-22818 · Gipsy · Gipsy
Name of the Vulnerable Software and Affected Versions: Gipsy versions prior to 1.3 Description: Gipsy is a multi-purpose discord bot that aims to be modular and user-friendly. The !ping command, when provided with an IP or hostname, used to run a bash ping without verification that the IP or...
Gipsy 操作系统命令注入漏洞
Gipsy is a modular, free, open source Discord robot from Curiosity Open Source. An operating system command injection vulnerability exists in Gipsy versions prior to 1.3. An attacker exploiting this vulnerability could use sudoer privileges to run commands on the host...