Sign in
ModsPluginsData PacksShadersResource PacksModpacks
Settings
QuickShop-Hikari

QuickShop-Hikari

A shop plugin that allows players to easily sell/buy any items from a chest without any commands.

73.2k
177

5.2.0.10

Download
Report

Changelog

Fixed a security issue:

Missing store ownership check when a player modifies a user's store permissions using the /qs permission command. This allows the user to take over arbitrary store permissions, including the administrator store.

This patch will not revoke permissions, you will need to do a check on the store's already set Per-player permissions property to avoid pre-existing exploits. For past versions, you can disable the command interface for the per-player permission system to avoid new exploits /lp group default permission set quickshop.permission false. However, upgrading is still recommended.

Considering that this security vulnerability allows for store privilege escalation (including unlimited stores, aka AdminShop) and allows for the modification of store transaction contents, prices, and disruption of the server's economic system, we strongly recommend that you plan an update immediately and utilize LuckPerms through the guide to disable this feature before you maintain it.

Dependencies

dependency-iconWorldEditoptional
dependency-iconDynmap®optional
dependency-iconDiscordSRVoptional
dependency-iconNBT-APIoptional
dependency-iconBentoBoxoptional
dependency-iconEssentialsXoptional
dependency-iconBlueMapoptional
dependency-iconLuckPermsoptional
dependency-iconGriefPreventionoptional

Files

QuickShop-Hikari-5.2.0.10.jar(2.02 MiB) Primary
Download
Addon-BlueMap-5.2.0.10.jar(7.97 KiB)
Download
Addon-DiscordSRV-5.2.0.10.jar(58.47 KiB)
Download
Addon-Discount-5.2.0.10.jar(38.76 KiB)
Download
Addon-DisplayControl-5.2.0.10.jar(20.08 KiB)
Download
Addon-Dynmap-5.2.0.10.jar(7.97 KiB)
Download
Addon-Limited-5.2.0.10.jar(10.8 KiB)
Download
Addon-List-5.2.0.10.jar(8.74 KiB)
Download
Addon-Plan-5.2.0.10.jar(22.28 KiB)
Download
Addon-Reremake-Migrator-5.2.0.10.jar(147.5 KiB)
Download
Addon-ShopItemOnly-5.2.0.10.jar(5.66 KiB)
Download
Compat-AdvancedRegionMarket-5.2.0.10.jar(8.99 KiB)
Download
Compat-AngelChest-5.2.0.10.jar(8.07 KiB)
Download
Compat-BentoBox-5.2.0.10.jar(10.17 KiB)
Download
Compat-BungeeCord-5.2.0.10.jar(5.59 KiB)
Download
Compat-BungeeCord-Geyser-5.2.0.10.jar(5.82 KiB)
Download
Compat-ChestProtect-5.2.0.10.jar(8.48 KiB)
Download
Compat-Clearlag-5.2.0.10.jar(7.86 KiB)
Download
Compat-EcoEnchants-5.2.0.10.jar(9.35 KiB)
Download
Compat-EliteMobs-5.2.0.10.jar(8.34 KiB)
Download
Compat-GriefPrevention-5.2.0.10.jar(17.93 KiB)
Download
Compat-Lands-5.2.0.10.jar(11.18 KiB)
Download
Compat-OpenInv-5.2.0.10.jar(13.67 KiB)
Download
Compat-PlotSquared-5.2.0.10.jar(14.74 KiB)
Download
Compat-Reforges-5.2.0.10.jar(7.92 KiB)
Download
Compat-Residence-5.2.0.10.jar(10.59 KiB)
Download
Compat-SuperiorSkyblock-5.2.0.10.jar(12.44 KiB)
Download
Compat-Towny-5.2.0.10.jar(34.64 KiB)
Download
Compat-Velocity-5.2.0.10.jar(6.9 KiB)
Download
Compat-WorldEdit-5.2.0.10.jar(11.17 KiB)
Download
Compat-WorldGuard-5.2.0.10.jar(12.21 KiB)
Download

90% of ad revenue goes to creators

Support creators and Modrinth ad-free with Modrinth+

Metadata

Release channel

Release

Version number

5.2.0.10

Loaders

Paper PurpurSpigot

Game versions

1.18.2–1.20.4

Downloads

519

Publication date

January 3, 2024 at 9:33 AM

Publisher

Ghost_chu

Ghost_chu

Owner

Version ID