{"id":79662,"date":"2026-06-12T15:22:48","date_gmt":"2026-06-12T11:52:48","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2026-47197-quest-bot-discord-moderation-role-hierarchy-bypass-in-ban-kick-mute-unmute-warn-and-nickname-commands\/"},"modified":"2026-06-12T15:22:48","modified_gmt":"2026-06-12T11:52:48","slug":"cve-2026-47197-quest-bot-discord-moderation-role-hierarchy-bypass-in-ban-kick-mute-unmute-warn-and-nickname-commands","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2026-47197-quest-bot-discord-moderation-role-hierarchy-bypass-in-ban-kick-mute-unmute-warn-and-nickname-commands\/","title":{"rendered":"CVE-2026-47197 &#8211; Quest Bot: Discord moderation role hierarchy bypass in ban, kick, mute, unmute, warn, and nickname commands"},"content":{"rendered":"<p>CVE ID :CVE-2026-47197<\/p>\n<p>  Published : 2026\u5e746\u670812\u65e5 11:52 | 1\u00a0\u5c0f\u65f6\uff0c30\u00a0\u5206\u949f ago<\/p>\n<p>  Description :Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, a moderator with the relevant Discord permission bit can use the bot to moderate users above them in the Discord role hierarchy, as long as the bot itself outranks the target. This bypasses Discord\u2019s normal role hierarchy protections and lets lower-ranked moderators ban, kick, timeout, untimeout, warn, or rename higher-ranked users. This issue has been patched in version 1.1.6.<\/p>\n<p>  Severity: 0.0 | NA<\/p>\n<p>  Visit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID :CVE-2026-47197 Published : 2026\u5e746\u670812\u65e5 11:52 | 1\u00a0\u5c0f\u65f6\uff0c30\u00a0\u5206\u949f ago Description :Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, a moderator with the relevant Discord permission bit can use the bot to moderate users above them in the Discord role hierarchy, as long as the bot itself outranks the target. This bypasses &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-79662","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/79662","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=79662"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/79662\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=79662"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=79662"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=79662"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}