Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Warnsystem Project Subscribe
Filtered by product Warnsystem
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-29502 1 Warnsystem Project 1 Warnsystem 2022-10-25 4.0 MEDIUM 6.5 MEDIUM
WarnSystem is a cog (plugin) for the Red discord bot. A vulnerability has been found in the code that allows any user to access sensible informations by setting up a specific template which is not properly sanitized. The problem has been patched in version 1.3.18. Users should update and type `!warnsysteminfo` to check that their version is 1.3.18 or above. As a workaround users may unload the WarnSystem cog or disable the `!warnset description` command globally.