[Plus Emulator] Bot Speech Exploit Fix

**Verted** · 07-11-17

Hi RaGEZONE,
I recently came across an "exploit" that allows users to bypass the bad HTML filter on bot speech setup.
Normally for example <font size="200"> and </font> would be blocked, but by simply using <FONT SIZE="200"> and </FONT> in capitals, you can bypass the filter. I also believe you can work around it with other variations too like "FoNT" or "fOnT" - but I do not remember. 200 is not the font size limit, you can make it go much higher and take up the whole screen. I have not tested this with alot of other HTML, but I'm sure this could be used to do much more malicious things.

It is shown here:
https://image.prntscr.com/image/ZJLYy7V7QX_h5oRX5iIuhg.png

Here's the fix which completely removes any form of string upon saving bot speeches.

Go to SaveBotActionEvent.cs and find:

Code:

for (int i = 0; i <= SpeechData.Length - 1; i++)
                        {                             using (IQueryAdapter dbClient = DatabaseManager.GetQueryReactor())

Replace that with:

Code:

for (int i = 0; i <= SpeechData.Length - 1; i++)                        {
                            SpeechData[i] = Regex.Replace(SpeechData[i], "<(.|\\n)*?>", string.Empty);
                            using (IQueryAdapter dbClient = DatabaseManager.GetQueryReactor())

Happy days.

**MentaL**

**streamhotel** · 07-11-17

This is old news. Already fixed clientside I thought. Which Habbo.swf revision you were using?

**Joopie** · 07-11-17

Originally Posted by streamhotel

This is old news. Already fixed clientside I thought. Which Habbo.swf revision you were using?

Fixing it serverside is always better than let the client handle stuff like this. It's oke as a first measurement against invalid input, but the server should always do it too!

**Verted** · 08-11-17

Originally Posted by streamhotel

This is old news. Already fixed clientside I thought. Which Habbo.swf revision you were using?

Plus Revision 2, not sure which production though. Can check this later if I can be fucked.

Originally Posted by Joopie

Fixing it serverside is always better than let the client handle stuff like this. It's oke as a first measurement against invalid input, but the server should always do it too!

True.

**The General** · 10-11-17

Ever since bots were released this has been a issue on most emulators.

**Verted** · 10-11-17

Originally Posted by The General

Ever since bots were released this has been a issue on most emulators.

No longer

**Oliveri** · 28-11-17

Originally Posted by Verted

No longer

Honestly, yes it is. You can still bypass the "protection" one way or another. Like in *rcturus it would be fixed with a simple while loop, but no one cares.

**DinamicUser** · 03-12-17

I've tested this bug on Plus Emulator R2 by Sledmore and it are affect.

EDIT: Thank you for this fix.

**Gaby** · 03-12-17

http://forum.ragezone.com/f353/mercu...ml#post8273713

2014

[Plus Emulator] Bot Speech Exploit Fix

Thread Tools

[Plus Emulator] Bot Speech Exploit Fix

Re: [Plus Emulator] Bot Speech Exploit Fix

Re: [Plus Emulator] Bot Speech Exploit Fix

Re: [Plus Emulator] Bot Speech Exploit Fix

Re: [Plus Emulator] Bot Speech Exploit Fix

Re: [Plus Emulator] Bot Speech Exploit Fix

Re: [Plus Emulator] Bot Speech Exploit Fix

Re: [Plus Emulator] Bot Speech Exploit Fix

Re: [Plus Emulator] Bot Speech Exploit Fix

Advertisement