Bug Description:
The bridges communication console contains one exploit caused by improper state validation.
A user is able to call the announce href, which leads to an input being spawned, however after this input has finished the current state of the machine is not verified in a correct manner, allowing the player to bypass the cooldown by keeping multiple inputs open.
Steps to reproduce:
1. Run up to a communications console.
2. Click the announce button a few times.
3. Use all of them to spam.
Communications console exploit
-
mullvad
- Registered user
- Posts: 63
- Joined: 12 Dec 2016, 06:40
- Byond: mullvad
-
mullvad
- Registered user
- Posts: 63
- Joined: 12 Dec 2016, 06:40
- Byond: mullvad
Communications console exploit #2
Bug Description:
The bridges communication console contains one exploit caused by improper state validation.
A user is able to call the requestshuttle href, which leads to an input being spawned, however after this input has finished the current state of the machine is not verified in a correct manner, allowing the player to bypass the cooldown by keeping multiple inputs open.
Steps to reproduce:
1. Run up to a communications console.
2. Click the request shuttle button a few times.
3. Use all of them to spam the admins with sos-morse-code.ogg
The bridges communication console contains one exploit caused by improper state validation.
A user is able to call the requestshuttle href, which leads to an input being spawned, however after this input has finished the current state of the machine is not verified in a correct manner, allowing the player to bypass the cooldown by keeping multiple inputs open.
Steps to reproduce:
1. Run up to a communications console.
2. Click the request shuttle button a few times.
3. Use all of them to spam the admins with sos-morse-code.ogg
-
mullvad
- Registered user
- Posts: 63
- Joined: 12 Dec 2016, 06:40
- Byond: mullvad
Communications console exploit #3
Bug Description:
The bridges communication console contains one exploit caused by improper state validation.
A user is able to call the MessageCentcomm href, which leads to an input being spawned, however after this input has finished the current state of the machine is not verified in a correct manner, allowing the player to bypass the cooldown by keeping multiple inputs open.
Steps to reproduce:
1. Run up to a communications console.
2. Click the send a message to USCM a few times.
3. Use all of them to spam the admins.
The bridges communication console contains one exploit caused by improper state validation.
A user is able to call the MessageCentcomm href, which leads to an input being spawned, however after this input has finished the current state of the machine is not verified in a correct manner, allowing the player to bypass the cooldown by keeping multiple inputs open.
Steps to reproduce:
1. Run up to a communications console.
2. Click the send a message to USCM a few times.
3. Use all of them to spam the admins.