CVE-2022-39302
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-39302
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-39302.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-39302
- Aliases
-
- GHSA-v574-xgcf-5w8x
- Published
- 2022-10-14T00:15:09Z
- Modified
- 2024-05-15T01:16:46.582398Z
- Severity
-
- 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Ree6 is a moderation bot. This vulnerability would allow other server owners to create configurations such as "Better-Audit-Logging" which contain a channel from another server as a target. This would mean you could send log messages to another Guild channel and bypass raid and webhook protections. A specifically crafted log message could allow spamming and mass advertisements. This issue has been patched in version 1.9.9. There are currently no known workarounds.
- References