CVE-2025-26604 Possibility to retrieve bot token by malicious module developers in Discord-Bot-Framework-Kernel

Discord-Bot-Framework-Kernel is a Discord bot framework built with interactions.py, featuring modular extension management and secure execution. Because of the nature of arbitrary user-submited code execution, this allows user to execute potentially malicious code to perform damage or extract...

Discord Bot Framework Kernel 信息泄露漏洞

Discord Bot Framework Kernel is a Discord Bot Framework kernel open sourced by Discord Agora. An information disclosure vulnerability exists in the Discord Bot Framework Kernel that stems from not properly handling user-submitted code. An attacker could exploit the vulnerability to extract...

Dimensions social sharing system word vulnerability-vulnerability warning-the black bar safety net

Brief description: Profile filter is not strict, resulting in the word arbitrary code execution. Detailed description: Profile filter is not strict, the user-submitted code is saved, the template cache after the read again when the direct execution of user code! Vulnerability to prove: ! ! Repair...