summaryrefslogtreecommitdiff
path: root/src
diff options
context:
space:
mode:
authorInkfish <Inkfish@54d463be-8e91-2dee-dedb-b68131a5f0ec>2010-08-17 02:09:47 +0000
committerInkfish <Inkfish@54d463be-8e91-2dee-dedb-b68131a5f0ec>2010-08-17 02:09:47 +0000
commit875dbe4bbd949b3a36cea22c86d7bd757c75cb71 (patch)
tree3db1010a7d91036a954efd54392bcf28a3864f5a /src
parent890930b7296683744525d43f8a914f20704c461a (diff)
downloadhercules-875dbe4bbd949b3a36cea22c86d7bd757c75cb71.tar.gz
hercules-875dbe4bbd949b3a36cea22c86d7bd757c75cb71.tar.bz2
hercules-875dbe4bbd949b3a36cea22c86d7bd757c75cb71.tar.xz
hercules-875dbe4bbd949b3a36cea22c86d7bd757c75cb71.zip
Fixed an exploit where unauthorized GMs can give zeny through auction.
git-svn-id: https://rathena.svn.sourceforge.net/svnroot/rathena/trunk@14379 54d463be-8e91-2dee-dedb-b68131a5f0ec
Diffstat (limited to 'src')
-rw-r--r--src/map/clif.c6
1 files changed, 6 insertions, 0 deletions
diff --git a/src/map/clif.c b/src/map/clif.c
index fd2f61522..3f4b314df 100644
--- a/src/map/clif.c
+++ b/src/map/clif.c
@@ -12795,6 +12795,12 @@ void clif_parse_Auction_bid(int fd, struct map_session_data *sd)
unsigned int auction_id = RFIFOL(fd,2);
int bid = RFIFOL(fd,6);
+ if( !pc_can_give_items(pc_isGM(sd)) )
+ { //They aren't supposed to give zeny [Inkfish]
+ clif_displaymessage(sd->fd, msg_txt(246));
+ return;
+ }
+
if( bid <= 0 )
clif_Auction_message(fd, 0); // You have failed to bid into the auction
else if( bid > sd->status.zeny )