1.1.1

This update fixes a security vulnerability where players with modified clients could intercept all commands. This bug affects the proxy (Bungee, Waterfall etc.)!
2022-07-19 18:27:07 +02:00 · 2022-07-19 18:27:07 +02:00 · 6586ac4ee9
commit 6586ac4ee9
parent a7518530c7
2 changed files with 2 additions and 2 deletions
--- a/pom.xml
+++ b/pom.xml
@ -6,7 +6,7 @@

    <groupId>net.t2code</groupId>
    <artifactId>Alias</artifactId>
-    <version>1.1.0</version>
+    <version>1.1.1</version>
    <packaging>jar</packaging>

    <name>T2C-Alias</name>
--- a/src/main/java/net/t2code/alias/Bungee/system/BListener.java
+++ b/src/main/java/net/t2code/alias/Bungee/system/BListener.java
@ -15,7 +15,7 @@ public class BListener implements Listener {
    @EventHandler
    public void onPluginmessage(PluginMessageEvent event) {
        if (event.getTag().equalsIgnoreCase("t2codealias:bungee")) {
-
+            event.setCancelled(true);
            DataInputStream stream = new DataInputStream(new ByteArrayInputStream(event.getData()));
            try {
                String channel = stream.readUTF();