Thread
:
can players exploit sourcemod with their name?
View Single Post
Blinx
Senior Member
Join Date: Oct 2013
06-24-2021 , 10:03 Re: can players exploit sourcemod with their name?
#
4
I'm not very knowledgeable about code injection but I think sm_command is your only worry since it's executing a command without any filtering as far as I know, but stuff like PrintToChat and basically every other function doesn't work like that.
As for your specific worry though, %N is a formatting thing that puts someones name into the string provided a client index, i.e.,
PrintToChat(client, "%N Welcome to the server!", client);
Hopefully someone with more indepth knowledge of sourcepawn can verify these things.
Blinx
View Public Profile
Send a private message to Blinx
Find More Posts by Blinx