From 32692782fb4a6c67848287d94347531d4d8c1fde Mon Sep 17 00:00:00 2001
From: William <william@willy.club>
Date: Tue, 5 Apr 2022 20:03:12 +0000
Subject: [PATCH] Add warning for privilege escalation exploit

---
 app/lib/App/Core/AccessControl.php | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/app/lib/App/Core/AccessControl.php b/app/lib/App/Core/AccessControl.php
index b286dec..ca45321 100644
--- a/app/lib/App/Core/AccessControl.php
+++ b/app/lib/App/Core/AccessControl.php
@@ -19,11 +19,18 @@ class AccessControl
     {
         $this->app = $app;
 
+        /**
+         * WARNING WARNING WARNING:
+         * 
+         * Never use an asterisk without putting anything before it like this "*".
+         * An attacker could leverage this by putting a forward slash behind a
+         * protected page like this "protected-page.php/pwned!" to gain access.
+         */
         $this->acl = [
             // routes that need power level 1 and up
             [
                 "routes" => [
-                    "race/simulator.php",
+                    "race/simulator.php*",
                     "race/configure/*"
                 ],
                 "catcher" => [