cyberpresidentvanellope/Bubberstation
1
0
Fork 0
mirror of https://github.com/Bubberstation/Bubberstation.git synced 2026-06-04 13:45:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
df899f3e53228e9041e6db9af463de74b5e109ce
Bubberstation/code/modules/admin
T
History
SkyratBot a297c06a0c [MIRROR] Fixed a vulnerability introduced by the Request Music PR [MDB IGNORE] (#21462) 
* Fixed a vulnerability introduced by the Request Music PR (#75691)

Admins can proccall the web_sound proc, completely bypassing the
shell_url_scrub done in other procs. Additionally, admins could just
directly modify the request URL stored in the request manager so that
it, again, bypasses the shell_url_scrub.

This PR just moves the shell scrubbing directly inside the proc, right
before the world.shelleo call, so that admins can't get around it with a
proccall.

* Fixed a vulnerability introduced by the Request Music PR

---------

Co-authored-by: Watermelon914 <37270891+Watermelon914@users.noreply.github.com>
2023-05-27 17:37:55 +00:00
..
callproc
[MIRROR] Corrects record_feedback()'s copy/paste comment [MDB IGNORE] (#20777)
2023-04-25 22:38:37 -07:00
smites
[MIRROR] Bible refactor [MDB IGNORE] (#21190)
2023-05-16 09:34:10 -04:00
verbs
[MIRROR] Fixed a vulnerability introduced by the Request Music PR [MDB IGNORE] (#21462)
2023-05-27 17:37:55 +00:00
view_variables
[MIRROR] Corrects record_feedback()'s copy/paste comment [MDB IGNORE] (#20777)
2023-04-25 22:38:37 -07:00
admin_fax_panel.dm
admin_investigate.dm
admin_pda_message.dm
admin_ranks.dm
admin_verbs.dm
[MIRROR] Refactored the TTS subsystem to more properly handle message garbling. Added a volume preference for TTS. [MDB IGNORE] (#21353)
2023-05-22 14:06:38 -04:00
admin.dm
[MIRROR] Corrects record_feedback()'s copy/paste comment [MDB IGNORE] (#20777)
2023-04-25 22:38:37 -07:00
adminmenu.dm
[MIRROR] Corrects record_feedback()'s copy/paste comment [MDB IGNORE] (#20777)
2023-04-25 22:38:37 -07:00
antag_panel.dm
chat_commands.dm
[MIRROR] Fix DMAPI errors regarding validated chat commands [MDB IGNORE] (#20327)
2023-04-04 18:57:12 -07:00
check_antagonists.dm
create_mob.dm
[Semi-Modular] Fixes species randomize_features not applying properly on mob spawn (#19262)
2023-02-26 03:48:35 +00:00
create_object.dm
create_turf.dm
force_event.dm
[MIRROR] Non-random events now provide a cause in their deadchat broadcast [MDB IGNORE] (#20757)
2023-04-25 18:44:12 -07:00
fun_balloon.dm
greyscale_modify_menu.dm
holder2.dm
[MIRROR] literally just hook asay into tgui say [MDB IGNORE] (#19171)
2023-02-05 12:45:33 +00:00
ipintel.dm
IsBanned.dm
[FUCK] Fixes our whitelist system not letting people in when whitelisted and getting on for the first time (#20614)
2023-04-17 22:13:29 +00:00
known_alts.dm
outfit_editor.dm
outfit_manager.dm
outfits.dm
painting_manager.dm
permissionedit.dm
player_panel.dm
[MIRROR] Fix: player panel encoding [MDB IGNORE] (#21356)
2023-05-24 17:04:19 +02:00
poll_management.dm
skill_panel.dm
sound_emitter.dm
sql_ban_system.dm
MISSED MIRROR [Lints Against Unmanaged Local Defines] (#20204)
2023-04-01 01:15:22 +01:00
sql_message_system.dm
[MIRROR] Watchlist notification text color [MDB IGNORE] (#19257)
2023-02-10 15:32:30 +00:00
stickyban.dm
tag.dm
team_panel.dm
topic.dm
[MIRROR] Refactors CTF [MDB IGNORE] (#20457)
2023-04-12 09:08:29 -07:00
trophy_manager.dm
whitelist.dm