The original security issue was reported to me by @Melonify through proper channels the 18th of May giving me guidance throughout the fixing process
Impact
Hosters of pajbot1
Patches
Hosters should upgrade to v1.52 or stable
Workarounds
The upgrade is simple, adding only one modern dependency. #1248 can be reviewed if a full upgrade is not available
References
Vulnerability tester: https://gist.github.com/Melonify/d8e5d70cdc1bebb871f72dc79d69ac60
For more information
If you have any questions or comments about this advisory:
The original security issue was reported to me by @Melonify through proper channels the 18th of May giving me guidance throughout the fixing process
Impact
Hosters of pajbot1
Patches
Hosters should upgrade to
v1.52orstableWorkarounds
The upgrade is simple, adding only one modern dependency. #1248 can be reviewed if a full upgrade is not available
References
Vulnerability tester: https://gist.github.com/Melonify/d8e5d70cdc1bebb871f72dc79d69ac60
For more information
If you have any questions or comments about this advisory: