Add warning for privilege escalation exploit

2022-04-05 20:03:12 +00:00 · 2022-04-05 20:03:12 +00:00 · 32692782fb
commit 32692782fb
parent 6f550c850c
1 changed files with 8 additions and 1 deletions
--- a/app/lib/App/Core/AccessControl.php
+++ b/app/lib/App/Core/AccessControl.php
@ -19,11 +19,18 @@ class AccessControl
    {
        $this->app = $app;

+        /**
+         * WARNING WARNING WARNING:
+         * 
+         * Never use an asterisk without putting anything before it like this "*".
+         * An attacker could leverage this by putting a forward slash behind a
+         * protected page like this "protected-page.php/pwned!" to gain access.
+         */
        $this->acl = [
            // routes that need power level 1 and up
            [
                "routes" => [
-                    "race/simulator.php",
+                    "race/simulator.php*",
                    "race/configure/*"
                ],
                "catcher" => [