This repository contains a list of Proof of Concept (PoC) exploits found in Discord Activities. These exploits are documented for educational purposes only, to help developers and security researchers understand potential vulnerabilities and improve the security of their applications.
This repository is for educational purposes only. The exploits listed here are Proof of Concept (PoC) and are not intended to be used for malicious purposes. The author of this repository does not condone or support any illegal or unethical activities. Use this information responsibly and only in environments where you have explicit permission to test.
The goal of this repository is to:
- Raise awareness about potential security issues in Discord Activities.
- Encourage developers to secure their applications by understanding common vulnerabilities.
- Provide a resource for security researchers to learn about and discuss these issues.
Each exploit is documented in its own directory, containing:
- A description of the vulnerability.
- Steps to reproduce the issue.
- Potential impact of the exploit.
- Recommendations for mitigation.
Please refer to the individual directories for more detailed information on each exploit.
If you have discovered a new exploit or have additional information about an existing one, feel free to contribute. Please follow these steps:
- Fork the repository.
- Create a new branch for your exploit.
- Add your exploit documentation in a new directory.
- Submit a pull request with a detailed description of your changes.
By using this repository, you agree to the following:
- You will not use the information provided for any illegal or unethical purposes.
- You understand that the author of this repository is not responsible for any misuse of the information provided.
- You will use this information only in environments where you have explicit permission to test.
If you have any questions or concerns, please open an issue in the repository or contact the repository owner directly.
Remember: Security research should always be conducted ethically and with the proper permissions. Let's work together to make the internet a safer place!