cb
cvebase
.
~
/
products
/
nicpwns
/
megabot
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
nicpwns
/
Nicpwns Megabot
Nicpwns Megabot vulnerabilities
1 known vulnerability affecting
nicpwns/megabot
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2024-43404
P2
CRITICAL
CVSS 9.8
fixed in 1.5.0
2024-08-20
CVE-2024-43404 [CRITICAL] CWE-95 CVE-2024-43404: MEGABOT is a fully customized Discord bot for learning and fun. The `/math` command and functionalit MEGABOT is a fully customized Discord bot for learning and fun. The `/math` command and functionality of MEGABOT versions < 1.5.0 contains a remote code execution vulnerability due to a Python `eval()`. The vulnerability allows an attacker to inject Python code into the `expression` parameter when using `/math` in any Discord channel. This vulnerab
nvd
Nicpwns Megabot vulnerabilities | cvebase