Vulnerability in Ticketer Cog Allows Exposure of Sensitive Information

Vulnerability in Ticketer Cog Allows Exposure of Sensitive Information

CVE-2021-29501 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Ticketer is a command based ticket system cog (plugin) for the red discord bot. A vulnerability allowing discord users to expose sensitive information has been found in the Ticketer cog. Please upgrade to version 1.0.1 as soon as possible. As a workaround users may unload the ticketer cog to disable the exploitable code.

Learn more about our User Device Pen Test.