endernon/wynntils-crafted-exploit-priv
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

nerf poco

Browse source
This commit is contained in:
endernon 2024-09-19 21:24:48 +01:00
parent 52b8c2bf51
commit a3ede9d5ad
2 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
README.md
View file

@ -0,0 +1,5 @@
# What is this?
This thing is an example to exploit an issue in Wynntils
# How does it work?
With the new Wynntils encoding, Wynntils DOES NOT validate crafted names for special characters like newlines. This can be exploited.
Credit to zatzou for finding this. Shits crazy, nerf poco

2
src/main.rs
View file

@ -22,7 +22,7 @@ fn main() {
.encode(ver, &mut out)
.unwrap();
NameData(String::from("\n".repeat(220)))
NameData(String::from("\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nWynntils doesnt do proper validation LMAOO ~endernon\nSee git.frfrnocap.men/endernon/wynntils-crafted-exploit"))
.encode(ver, &mut out)
.unwrap();