Mirror von
https://github.com/IntellectualSites/FastAsyncWorldEdit.git
synchronisiert 2024-12-24 01:50:06 +01:00
Fixed gaping huge security flaw.
Dieser Commit ist enthalten in:
Ursprung
9e6a2ccf4d
Commit
23c9a66c80
@ -40,11 +40,11 @@ public class DinnerPermsResolver implements PermissionsResolver {
|
||||
}
|
||||
|
||||
public boolean hasPermission(String name, String permission) {
|
||||
Player player = server.getPlayer(name);
|
||||
Player player = server.getPlayerExact(name);
|
||||
if (player == null) {
|
||||
return false; // Permissions are only registered for online players
|
||||
}
|
||||
if ( player.hasPermission("*") || player.hasPermission(permission)) {
|
||||
if (player.hasPermission("*") || player.hasPermission(permission)) {
|
||||
return true;
|
||||
}
|
||||
int dotPos = permission.lastIndexOf(".");
|
||||
|
Laden…
In neuem Issue referenzieren
Einen Benutzer sperren