CVE-2026-47175EPSS p14.1%

CVE-2026-47175CVE-2026-47175

Description

Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.4, several moderation commands echo user-controlled reason text in public bot replies without disabling mention parsing. A moderator who does not have permission to mention everyone can still make the bot send @everyone or @here if the bot has that permission. This issue has been patched in version 1.0.4.

Scoring

EPSS0.24% probability of exploitation · percentile 14.1% · 2026-06-19T12:03:05Z
Last modified2026-06-13
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.