You can clone with
Currently it is possible to post wrongly formatted links to cause wowerror for everyone even when the server has the maximum level of chat protection. It is done by using the conjuction of addon language(to bypass the chat protection) and a message type which normally can't be used in conjuction with it(for example CHAT_MSG_EMOTE).
Add fix to ChatHandler.cpp - line 83
if (lang == LANG_ADDON && type != CHAT_MSG_PARTY && type != CHAT_MSG_RAID &&
type != CHAT_MSG_GUILD && type != CHAT_MSG_WHISPER && type != CHAT_MSG_BATTLEGROUND)
sLog->outError(LOG_FILTER_NETWORKIO, "CMSG_MESSAGECHAT: Exploit attempt by %s (guid %d)!", sender->GetName(), sender->GetGUIDLow());
maybe more simply build mask for this type and check
nice, can anyone confirm this works?
tried this after applying your change, still crashes people. (ChatStrictLinkChecking.Severity = 0)
TrinityCore/TrinityCore#7108 is fixed already just enable ChatStrictLinkChecking.Severity = 3 .
My patch fixes the bypass of ChatStrictLinkChecking.Severity = 3.
Please post (or send me) a string that ist verified to cause crashes.
using CHAT_MSG_EMOTE (CHAT_MSG_CHANNEL supposed to work aswell) and LANG_ADDON
Did you manage to reproduce the crash with the string and mods I posted? It needs to be fixed urgently as players can easily climb the arena ladder in no time using this.
Confirm. Took me some time, but it still works. (Maybe I tried the wrong way, but just sending it like a normal message won't work. Won't explain it in detail...)