search

games647 / FlexibleLogin

A Sponge minecraft server plugin for second factor authentication
https://forums.spongepowered.org/t/8872
MIT License
87 stars 23 forks source link

[Security] Fix inventory duplication #172

Closed SettingDust closed 4 years ago

SettingDust commented 4 years ago

Terrible XD https://github.com/SpongePowered/SpongeForge/issues/3097

games647 commented 4 years ago

Oh.... I invested so much time looking into this. Do you tested if it's fixed now?

SettingDust commented 4 years ago

Oh.... I invested so much time looking into this. Do you tested if it's fixed now?

Publish in my group. 1:37 in China now. So just 1 people test it. I'll get the answer tomorrow

SettingDust commented 4 years ago

It's Ok. And sponge has fixed this bug. But not below 4005

games647 commented 4 years ago

So does your change work below 4005?

SettingDust commented 4 years ago

So does your change work below 4005?

Not only. But not necessarily above 4005

SettingDust commented 4 years ago

So does your change work below 4005?

Not only. But not necessarily after 4005

games647 commented 4 years ago

I published a security advisory on the ReadMe page. This should get everyone informed. Thanks again for the patch.