All reports
digupadventure_displayed reports
#97992: "Secret cards from other player are leaked "
What is this report about?
What happened ? Please select from below
Rules: a rule of the game has not been respected
Detailed description
-
• Which part of the rules was not respected by the BGA adaptation
Secret cards from other players can be seen, because they are sent to the browsers of each player. This allows any cheater to get access to a lot of data (didn't check to which extent, but I suppose most of the stuff is accessible).
It is even leaked very shortly by some animations (that's how I got the idea to check). -
• Is the rules violation visible on game replay? If yes, at which move number?
Each time a player put a card on the mine, getting a hidden one, it is temporarily visible with the animation.
• What is your browser?
Google Chrome v116
Report history
8. Sep 2023 20:09 • JustinFernal • Bug has not been reproduced by delopers yet:
The messages corresponding to other players actions can be easily intercepted in the network console of any browser.
I don't know if everything is accessible or only certain moves related to the mine (quick look at the Websocket frames makes me think that it is everything, but not sure yet : I didn't try to understand them fully).
Advice : a security check should be done for this game, and then probably a big refactoring, as any information not visible to a player should NOT be sent at all to this player, even if not displayed.
I don't know if everything is accessible or only certain moves related to the mine (quick look at the Websocket frames makes me think that it is everything, but not sure yet : I didn't try to understand them fully).
Advice : a security check should be done for this game, and then probably a big refactoring, as any information not visible to a player should NOT be sent at all to this player, even if not displayed.
31. Jan 2024 11:08 • El_Guigui_13 • Bug has not been reproduced by delopers yet:
All the time when a face-down card is replaced by a face-up card, the animation allows the face-down card to be seen.
This is a violation of the rules of the game. It should not be possible for the opponent to see the replaced card.
This is a violation of the rules of the game. It should not be possible for the opponent to see the replaced card.
31. Jan 2024 12:10 • totem54 • Bug has not been reproduced by delopers yet:
el guigui 13 m'a demandé de signaler le bug c'est donc ce que je fais mais je n'ai pas attention au bug durant la partie.
31. Jan 2024 14:17 • Jack Cannon • Bug has not been reproduced by delopers yet:
I confirm the problem and wish that can be solved soon
31. Jan 2024 14:37 • El_Guigui_13 • Bug has not been reproduced by delopers yet:
Here's an example: the card in position 8 is hidden; when it's replaced by the red 8, the opponent can clearly see that it's a skeleton.
imgur.com/a/2ILsd4n
imgur.com/a/2ILsd4n
Add something to this report
Please add here anything that seems relevant to reproduce this bug or understand your suggestion:
- Another table ID / move ID
- Did F5 solve the problem?
- Did the problem appears several time? Everytime? Randomly?
- If you have a screenshot of this bug (good practice), you can use Imgur.com to upload it and copy/paste the link here.
