Skip to content

Discriminator can be empty

Low
MaddyUnderStars published GHSA-hqqp-gpqw-9w5c Feb 2, 2023

Package

fosscord-server (fosscord-server)

Affected versions

< 51239d60f669ddfe18739e0e05cf713ef88a38ed

Patched versions

> 69c55884e5cb3503d4319d2fa32eb0d7e593ee52

Description

Summary

Sending a PATCH request to /users/@me allows for empty discriminators.

Migigation

This is fixed as of commit 69c5588.

Severity

Low

CVE ID

No known CVE

Weaknesses

No CWEs

Credits