Has MCreator been checked for vulnerability to the Log4J exploit?

Started by Omegafanplays on

Topic category: Troubleshooting, bugs, and solutions

Joined Jan 2022
Points:

User statistics:

  • Modifications:
  • Forum topics:
  • Wiki pages:
  • MCreator plugins:
  • Comments:
Has MCreator been checked for vulnerability to the Log4J exploit?

Has MCreator been checked for vulnerability to the Log4J exploit? Does any part of MCreator use Log4J and when Minecraft is launched by MCreator is it launching a known version of Minecraft that has been patched or is it launching minecraft with arguments to disable Log4J?

Joined Oct 2020
Points:

User statistics:

  • Modifications:
  • Forum topics:
  • Wiki pages:
  • MCreator plugins:
  • Comments:
I'm pretty sure its fine if…
Mon, 01/24/2022 - 20:10

I'm pretty sure its fine if there was the log4j exploit in mcreator they would have made an announcement

Joined Dec 2021
Points:

User statistics:

  • Modifications:
  • Forum topics:
  • Wiki pages:
  • MCreator plugins:
  • Comments:
maybe they just dont want us…
Mon, 01/24/2022 - 21:13

maybe they just dont want us to fear what we dont understand...that mcreator IS the log4j exploit...from the begining of log4j, mcreator was, and from the beginning of log4j mcreator was...

MCreator has the version of…
Tue, 01/25/2022 - 09:09

MCreator has the version of log4j that has the exploit, the fixed version comes with the latest release.

We did not urge to update because the exploit itself is not exploitable in the context of the use of the library in MCreator

Joined Jan 2022
Points:

User statistics:

  • Modifications:
  • Forum topics:
  • Wiki pages:
  • MCreator plugins:
  • Comments:
thank you so much for all…
Mon, 02/07/2022 - 09:23

thank you so much for all your help.