Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Path Traversal at Discord-Recon .recon Command Path
Vulnerability Description
Discord-Recon is a bot for the Discord chat service. In versions of Discord-Recon 0.0.3 and prior, a remote attacker is able to read local files from the server that can disclose important information. As a workaround, a bot maintainer can locate the file `app.py` and add `.replace('..', '')` into the `Path` variable inside of the `recon` function. The vulnerability is patched in version 0.0.4.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
路径遍历:’../filedir’
Vulnerability Title
Mohamed Dief Discord-Recon 路径遍历漏洞
Vulnerability Description
Mohamed Dief Discord-Recon是Mohamed Dief开源的一个应用程序。用于从Discord中执行侦察过程b。 Discord-Recon 0.0.3版本及之前版本存在安全漏洞,远程攻击者可利用该漏洞能够从服务器读取本地文件,这些文件可以泄露重要信息。
CVSS Information
N/A
Vulnerability Type
N/A