Vulnerability Description
Core Bot Is an Open Source discord bot made for maple hospital servers. Prior to commit dffe050, the API keys (SUPABASE_API_KEY, TOKEN) are loaded using environment variables, but there are cases in code (error handling, summaries, webhooks) where configuration summaries may inadvertently leak sensitive data (e.g., by failing to redact data in summary embeds or logs). This issue has been patched via commit dffe050.
Related Weaknesses (CWE)
References
- https://github.com/Intercore-Productions/Core-Bot/commit/dffe050d565a580edfcd024
- https://github.com/Intercore-Productions/Core-Bot/security/advisories/GHSA-42j6-
FAQ
What is CVE-2025-65957?
CVE-2025-65957 is a documented vulnerability. Core Bot Is an Open Source discord bot made for maple hospital servers. Prior to commit dffe050, the API keys (SUPABASE_API_KEY, TOKEN) are loaded using environment variables, but there are cases in c...
How severe is CVE-2025-65957?
CVSS scoring is not yet available for CVE-2025-65957. Check NVD for updates.
Is there a patch for CVE-2025-65957?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.