Discord Voice Chat Exploit
Discord Voice Channels has multiple server regions that lets people around the world connect from their specific region to one big huge server connecting other people in the same voice call hub. This while good can have its downsides especially when you give users the ability to swap between the servers as much as they please. Changing the Region of a call is usually handled server-side as it changes not only for one person but everyone else. So I decided that if this was the case then by making a simple loop that utilizes the api functions that specifically control the region of a vc, i could crash it. This is the result of that research
This does work...to a degree. I decided to run some tests on the different areas that this can be used and came to find out that this doesnt work for Discord Servers. While the connection is made and the API is being called, because of the test ran in the server I was honestly unable to determine IF it crashed Discord. I plan to eventually run this test on private Discord VCs to test its ability and if itll work.
The token in this instance is the user token. for the api to make the calls to crash VC it has to have access to the channel ID you are targetting. Im sure that with some more research and deeper look into it this could be used as a discord bot, but as of the time of writing this i have no real interest in going that deep.
Because Discord has for years at this point been REALLY garbage at maintaining their security, atleast in my opinion. Things like this shouldnt be happening and its through the exposing of these vulns to the greater public that forces them to address these issues.