A recent cheat was made public that contained a ton of exploits for popular addons. We’ve identified all of the addons that were being exploited. If you use any of these addons, I recommend updating to the latest version of them (if it’s fixed), or temporarily removing them from your server until the exploit(s) is/are patched. These exploits are going to be abused more than ever now, so it’s best that all server owners are made aware of this.
(some of these exploits are very dumb)
Customizable Money Printers
Players are able to take money out of every printer on the server at once.
https://www.gmodstore.com/scripts/view/243
Custom ULX Commands
Players are able to spam every player with a message (2 different funcs).
Players are able to spam the server console with a very lot of errors.
Players are able to “vandalize” server data files.
PatchPlay (PPlay)
Players are able to give themselves superadmin and wipe the DarkRP database.
VJ Base
Players are able to spam everyone’s chat and spam sounds. (Fixed in latest version ON GITHUB, update the addon FROM GITHUB, will update when workshop is fixed as well)
HitmanX
Allow players to give themselves money.
Couldn’t find addon link?
BailNPC - Bail out your friends!
Allow players to give themselves money.
https://www.gmodstore.com/scripts/view/549/bailnpc-bail-out-your-friends
The Real Printers
Allows players to destroy printers remotely.
https://www.gmodstore.com/scripts/view/768
TexStickers - Texture customizer
Allows players to crash the server.
https://www.gmodstore.com/scripts/view/3284/texstickers-texture-customizer
RP Name Editor with NPC
Allows players to rename everybody on the server.
https://www.gmodstore.com/scripts/view/1959
ATS - Auzlex’s Teleport System
Lags the server.
Coin Flips
Lags the server. (Fixed in latest version, update the addon.)
https://www.gmodstore.com/scripts/view/2263/coin-flips-pointshop-2-support-added
ULib
Potentially lags the server, spams the server console.
Keypad Tool and Cracker with Wire Support
Lags the server (Fixed in latest version, update the addon).
rProtect
Lags the server.
https://www.gmodstore.com/scripts/view/1300/rprotect
Stacker V1
Lags the server.
DarkRP Defibrillator + Death Screen
Allows players to revive themselves.
https://www.gmodstore.com/scripts/view/2297
Darkrp Armory Robbery System
Players are able to give themselves weapons.
https://www.gmodstore.com/scripts/view/299/darkrp-armory-robbery-system
Report System
Spams reports for everybody on the server.
https://www.gmodstore.com/scripts/view/258/report-system
SimplicityAC
Instantly crash server. (Fixed in latest version, update the addon.)
https://www.gmodstore.com/scripts/view/3642/simplicityac-anticheat-for-your-anti-cheat-needs
PAC 3
Instantly crash server. (Fixed in latest version ON GITHUB, update the addon FROM GITHUB, will update when workshop is fixed as well)
Sandbox / DarkRP / FPP
Remove all weapons from players. (Fixed on dev branch, here’s the file)
This is an exploit in gamemodes that derive from sandbox. If your gamemode is derived from sandbox, make a
SANDBOX:CanProperty check yourself. If you are using DarkRP and don’t know Lua, to fix the issue, you need to make sure “People can toolgun world entities” is unchecked in your FPP toolgun settings (or make a canproperty check):
Updated August 7th
Global Ban! Simple way to ban globally (gBan)
Players are able to ban and unban any user. (Fixed by removing “user” from the gBan.Config.Hierarchy table, it’s there by default in the non-latest versions)
https://www.gmodstore.com/scripts/view/1647/global-ban-simple-way-to-ban-globally-gban
Advanced Government Computer (Mayor & Police)
Players are able to crash the server. (Fixed in latest version, update the addon.)
https://www.gmodstore.com/scripts/view/2828