Published on: Not Yet Published
Last Modified on: 10/17/2022 02:47:00 PM UTC
CVE-2022-39302 - advisory for GHSA-v574-xgcf-5w8xSource: Mitre Source: NIST CVE.ORG Print: PDF
Certain versions of Ree6 from Ree6 contain the following vulnerability:
Ree6 is a moderation bot. This vulnerability would allow other server owners to create configurations such as "Better-Audit-Logging" which contain a channel from another server as a target. This would mean you could send log messages to another Guild channel and bypass raid and webhook protections. A specifically crafted log message could allow spamming and mass advertisements. This issue has been patched in version 1.9.9. There are currently no known workarounds.
- CVE-2022-39302 has been assigned by [email protected] to track the vulnerability - currently rated as MEDIUM severity.
- Affected Vendor/Software: Ree6-Applications - Ree6 version < 1.9.9
CVSS3 Score: 5.4 - MEDIUM
|Cross-Server-Channel Exploit · Advisory · Ree6-Applications/Ree6 · GitHub|| github.com |
|Removed News-Channel. · Ree6-Applications/[email protected] · GitHub|| github.com |
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
No vendor comments have been submitted for this CVE
|@CVEreport||CVE-2022-39302 : Ree6 is a moderation bot. This vulnerability would allow other server owners to create configurati… twitter.com/i/web/status/1…||2022-10-13 23:35:00|