| Title | Discord 1.0.9188 Uncontrolled Search Path |
|---|
| Description | A DLL hijacking vulnerability exists in Discord version 1.0.9188 (Windows client) that allows an attacker to achieve Remote Code Execution (RCE) by placing a malicious DLL (WINSTA.dll) in the user-writable Discord installation directory. |
|---|
| Source | ⚠️ https://gist.github.com/shellkraft/ac4be6a3953e2889a7bf54aea2db88c2 |
|---|
| User | shellkraft (UID 65045) |
|---|
| Submission | 04/21/2025 00:20 (1 Year ago) |
|---|
| Moderation | 05/10/2025 07:23 (19 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 308270 [Discord 1.0.9188 on Windows WINSTA.dll uncontrolled search path] |
|---|
| Points | 16 |
|---|