Vulnerabilities: Difference between revisions
Created page with "This page documents all vulnerabilities that have been present in Our World of Text. Design flaws will not be included. By definition, a vulnerability is a bug that a person can take advantage of to manipulate the server or a user's data in unauthorized ways. == April 12, 2018 == '''Type:''' Unauthorized data manipulation '''Description:''' With a few specially crafted edits, the content of a tile can get corrupted, affecting precisely-protected cells as well. '''Comm..." |
There are no recorded instances of this exploit being deployed offensively before the patch, but feel free to correct this if there's proof |
||
| (5 intermediate revisions by 3 users not shown) | |||
| Line 8: | Line 8: | ||
'''Commit(s):''' <nowiki>https://github.com/system2k/NodeWorldOfText/commit/edd89084e5cdb80d49af1239bf796506dadc3aea</nowiki> | '''Commit(s):''' <nowiki>https://github.com/system2k/NodeWorldOfText/commit/edd89084e5cdb80d49af1239bf796506dadc3aea</nowiki> | ||
'''Actively exploited:''' Yes | '''Actively exploited at its time:''' Yes | ||
'''Patched:''' Yes | '''Patched:''' Yes | ||
| Line 19: | Line 19: | ||
'''Description:''' Sending a cursor message on a world with guest cursors disabled and then disconnecting the client would crash the server. Can be used to take down server for any amount of time. | '''Description:''' Sending a cursor message on a world with guest cursors disabled and then disconnecting the client would crash the server. Can be used to take down server for any amount of time. | ||
'''Actively exploited:''' No | '''Actively exploited at its time:''' No | ||
'''Patched:''' Yes | '''Patched:''' Yes | ||
| Line 30: | Line 30: | ||
'''Description:''' Upon removing a member from your world, all of the member's connected clients will be temporarily demoted regardless of their world until they refresh. Caused by not checking the world the client is located in before unmarking user as member in memory. | '''Description:''' Upon removing a member from your world, all of the member's connected clients will be temporarily demoted regardless of their world until they refresh. Caused by not checking the world the client is located in before unmarking user as member in memory. | ||
'''Actively exploited:''' No | '''Actively exploited at its time:''' No | ||
'''Patched:''' Yes | '''Patched:''' Yes | ||
| Line 43: | Line 43: | ||
'''Commit(s):''' <nowiki>https://github.com/system2k/NodeWorldOfText/commit/d021af26bb8363fcf9ec73539cd05208b6f5ed3d</nowiki> | '''Commit(s):''' <nowiki>https://github.com/system2k/NodeWorldOfText/commit/d021af26bb8363fcf9ec73539cd05208b6f5ed3d</nowiki> | ||
'''Actively exploited:''' No | '''Actively exploited at its time:''' No | ||
'''Patched:''' Yes | '''Patched:''' Yes | ||
| Line 56: | Line 56: | ||
'''Commit(s):''' <nowiki>https://github.com/system2k/NodeWorldOfText/commit/292df686812af8cb3d99bada2c3ded3f4b3d8850</nowiki> | '''Commit(s):''' <nowiki>https://github.com/system2k/NodeWorldOfText/commit/292df686812af8cb3d99bada2c3ded3f4b3d8850</nowiki> | ||
'''Actively exploited:''' No | '''Actively exploited at its time:''' No | ||
'''Patched:''' Yes | '''Patched:''' Yes | ||
'''Discoverer(s):''' FP | '''Discoverer(s):''' FP | ||
== June 2, 2024 == | |||
'''Type:''' Rate limit issue | |||
'''Description:''' A user can send up to 512 chat messages per second on the Global channel. | |||
'''Commit(s):''' <nowiki>https://github.com/system2k/NodeWorldOfText/commit/dd4b385b762dc9f6033ddcab788ce4e1a2103b77</nowiki> | |||
'''Actively exploited at its time:''' Yes | |||
'''Patched:''' Yes | |||
'''Discoverer(s):''' Maroon, FP, KKosty4ka | |||
== June 17, 2024 == | |||
'''Type:''' Crash exploit | |||
'''Description:''' A [https://github.com/websockets/ws/pull/2231 crash exploit] in the "ws" library affected OWOT. | |||
'''Commit(s):''' <nowiki>https://github.com/system2k/NodeWorldOfText/commit/00ebd4202924dc660dab22ffd41f5c45f39da446</nowiki> | |||
'''Actively exploited at its time:''' No | |||
'''Patched:''' Yes | |||
'''Discoverer(s):''' KKosty4ka | |||
== January 13, 2025 == | |||
'''Type:''' Bad length validation ([https://cwe.mitre.org/data/definitions/1284.html CWE-1284]) | |||
'''Description:''' Due to a typo, string values in a custom chat metadata object were not properly validated. Can be used to take down or saturate the server with extremely large payloads. ([https://capec.mitre.org/data/definitions/231.html CAPEC-231]) | |||
'''Commit(s):''' <nowiki>https://github.com/system2k/NodeWorldOfText/commit/8070c780476c5ecfa257f46743f7b09bc49073ef</nowiki> | |||
'''Actively exploited at its time:''' No | |||
'''Patched:''' Yes | |||
'''Discoverer(s):''' ITAC85v2 | |||