VYPR

npm package

oceanic.js

pkg:npm/oceanic.js

Vulnerabilities (1)

  • CVE-2024-34712MedMay 14, 2024
    affected < 1.10.4fixed 1.10.4

    Oceanic is a NodeJS library for interfacing with Discord. Prior to version 1.10.4, input to functions such as `Client.rest.channels.removeBan` is not url-encoded, resulting in specially crafted input such as `../../../channels/{id}` being normalized into the url `/api/v10/channel