How to patch exploit can change booth owner for no reasons

ZuzrTkl · February 6, 2025, 9:18am

I need this patch Here proof

Because he exploiter can change booths all
how to i do patch?

mikquint · February 6, 2025, 10:03am

Add a booth ownership check on the server-side

if Owner.Value == Player.Name and Player:FindFirstChild(“BoothFolder”):FindFirstChild(Theme) then

TheRealANDRO · February 6, 2025, 10:03am

Your remote event handler script on the Server does not check if the player truly owns the booth. Instead, the client does it, which allows the exploiter to send any value they wish and obtain whatever booth they want.

Remove the check on the client and add it to the Server script, that should fix your issue.

ZuzrTkl · February 6, 2025, 10:07am

But has gamepasses and Who only access booth

mikquint · February 6, 2025, 10:08am

I don’t understand what you mean, but you should always check on the server-side, because exploiters can fire remoteevents to the server.

ZuzrTkl · February 6, 2025, 10:10am

But there buttons Booth who cant click for dont own
Exploiter can remote fireserver it for changed booth

ZuzrTkl · February 6, 2025, 10:13am

devforumLimits

mikquint · February 6, 2025, 10:15am

Did you change this on you server script already?

if Owner.Value == Player.Name and Player:FindFirstChild(“BoothFolder”):FindFirstChild(Theme) then

ZuzrTkl · February 6, 2025, 10:17am

i should add Script in button? without Localscript

mikquint · February 6, 2025, 10:18am

No in BoothScripts, the one you pasted in your post. Change line 3 to it.

ZuzrTkl · February 6, 2025, 10:22am

No there Vip and access Booth but without Boothfolder

ZuzrTkl · February 6, 2025, 10:27am

This good ideas Thank you
devv

system · February 20, 2025, 10:27am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.