Chat commands (and by extension many more commands) bypass sv_cheats #1314
Labels
Outcome: Resolved
This was resolved, and will be in a future update.
Priority: High
Something essential that should be done in this release, as soon as possible.
Size: Small
Something that may take a day at most to do.
Type: Bug
Something that should work/look one way isn't quite doing that.
Where: Game
This is something for the main game code.
Projects
Describe the bug
Chat commands will execute certain concommands through
IVEngineClient::ClientCmd
. Some of these commands will accept parameters. Since these are not sanitized, you can chain a second command by appending;<command>
to the parameter.These commands are not checked against
sv_cheats
, however, allowing you to execute some protected commands. It appears only GAMEDLL-flagged concommands work. I didn't find a way to change cvars since you need to add spaces for the parameters but I'm sure there's a way.To Reproduce
/spec *nullptr;cast_hull
and submitExpected behavior
At least, it should verify sv_cheats, even if parameters remain executable. Still, there should probably be some sanitization.
Desktop/Branch (please complete the following information):
Additional context
This is also apparent because
/triggers
works from chat but not from console. Since we do want that to be available anyways, it's not an issue though (same for the other chat commands). You can enable noclip this way but it has its own safeguard, stopping the timer, which makes it pretty useless. Finding a proper abuse scenario is left as an exercise to the reader.The text was updated successfully, but these errors were encountered: