Now, the title is pretty self explanatory, do ModuleScripts have a vulnerability.
I’m asking this question because I feel like exploiters can run the ModuleScript code with a script. They simply insert a script and run the ModuleScript in the script.
So, could somebody answer my question, do ModuleScripts have a vulnerability?
Exploiters don’t need to insert modules or scripts to execute code. They can inject Lua code that runs at an even higher level than core scripts. So even if there was a vulnerability, it is irrelevant.
If you’re asking if exploiters can change the code inside a module that was required by a server script and is replicated to the server then no.
Any changes made to a module is purely client side, if they overwrite a function in a module only LocalScripts that are accessing that module would see the changes.
If a server script is requiring the module it will not see those changes and run like the original code.