patrlim
commented
1 year ago closed due to hydra implementing security fixes
Closed patrlim closed 1 year ago
patrlim
commented
1 year ago closed due to hydra implementing security fixes
This isn't a bug report, this is an issue with e2 itself that breaks trust and security.
When a player sends a chat message, be it a PM, radio message, overwatch radio message, group message, anything, even local chat, lastSaid() can return the message you sent. this means that ALL messages can be viewed by a third party, informing them of events long before they happen. This applies to admin chat too.
When a player sends a chat message their name, steamID, etc can be seen with lastSpoke(). this means that not only can you see what was said, but by who, where, and when.