16 matches found
CVE-2026-48485
Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the latest release suppresses mentions when creating, unbanning, unwarning, kicking, muting, and unmuting, but stored warning reasons are still printed by /warns without mention suppression. A moderator can create a warning with...
CVE-2026-47188
Quest Bot is an open‑source Discord bot for moderation. CVE-2026-47188 describes a vulnerability in versions prior to 1.0.5 where the /unban and /unwarn commands echo user-provided reason text in public bot messages without respecting allowedMentions, enabling mass pings via @everyone or @here. I...
CVE-2026-47175 Quest Bot: Moderation reason fields allow bot-powered `@everyone` / `@here` pings
Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.4, several moderation commands echo user-controlled reason text in public bot replies without disabling mention parsing. A moderator who does not have permission to mention everyone can...
EUVD-2026-36274
Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.3, a normal user can create a ticket with a reason containing @everyone, @here, user mentions, or role mentions. When the ticket is created, the bot posts the attacker-controlled reason...
EUVD-2013-6503
Malware in sbrugna...
Malicious code in @malware-test-yeast-pings-sysop-foams/test-mlw3-yeast-pings-sysop-foams (npm)
The package @malware-test-yeast-pings-sysop-foams/test-mlw3-yeast-pings-sysop-foams was found to contain malicious code...
Malicious code in test-mlw2-pings-abets (npm)
The package test-mlw2-pings-abets was found to contain malicious code...
MAL-2025-35976 Malicious code in test-mlw2-pings-abets (npm)
The package test-mlw2-pings-abets was found to contain malicious code...
Malicious code in test-mlw2-leggy-pings (npm)
The package test-mlw2-leggy-pings was found to contain malicious code...
MAL-2025-35665 Malicious code in test-mlw2-leggy-pings (npm)
The package test-mlw2-leggy-pings was found to contain malicious code...
MAL-2025-9078 Malicious code in @malware-test-yeast-pings-sysop-foams/test-mlw3-yeast-pings-sysop-foams (npm)
The package @malware-test-yeast-pings-sysop-foams/test-mlw3-yeast-pings-sysop-foams was found to contain malicious code...
Broadcom Brocade SANnav 信息泄露漏洞
Broadcom Brocade SANnav is a suite of SAN management platforms from Broadcom USA. A security vulnerability exists in Brocade SANnav versions v2.3.1 and v2.3.0a that originates when the Brocade SANav service periodically sends ping commands to gridgain.com in the background to check for available...
WooCommerce v7.1.0 - Remote Code Execution Vulnerability
Title: Wordpress Plugin WooCommerce v7.1.0 - Remote Code ExecutionRCE Author: Milad Karimi Vendor Homepage: https://wordpress.org/plugins/woocommerce Software Link: https://wordpress.org/plugins/woocommerce Tested on: windows 10 , firefox Version: 7.1.0 CVE : N/A Description: simple, easy to use...
Moderate: Red Hat Security Advisory: openvswitch security, bug fix and enhancement update
An update for openvswitch is now available in Fast Datapath for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
broadcast-ping NSE Script
Sends broadcast pings on a selected interface using raw ethernet packets and outputs the responding hosts' IP and MAC addresses or if requested adds them as targets. Root privileges on UNIX are required to run this script since it uses raw sockets. Most operating systems don't respond to...
CVE-2001-0313
Borderware Firewall Server 6.1.2 is vulnerable to a denial-of-service condition triggered by a ping to the broadcast address of the server’s public network. The affected component is the server’s network stack handling ICMP echoes; exploitation causes the device to continuously send echo requests...