You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Zephyrkul
published
GHSA-rm7m-j4xp-rv2pSep 15, 2020
Package
act
(Red Discord Bot)
Affected versions
< 6b9f3b862e1f0a5429c62f3090f814e53a242347
Patched versions
6b9f3b862e1f0a5429c62f3090f814e53a242347
Description
Impact
An RCE exploit has been discovered in the Act module. With this exploit, Discord users can use specially crafted messages to perform destructive actions and/or access sensitive information.
Impact
An RCE exploit has been discovered in the Act module. With this exploit, Discord users can use specially crafted messages to perform destructive actions and/or access sensitive information.
Patches
This exploit has been patched in commit 6b9f3b86
Workarounds
Unloading the Act module with
unload actcan render this exploit inaccessible.References
For more information
If you have any questions or comments about this advisory: