We recently had a griefer, xNOOBALICIOUSx (don't want to give her the satisfaction of having her name here), compromise our server. It was the order of events in her pentesting that lead me to HD. Notice in the log below that he was able to issue a command as the owner/operator (zeronerve) to op herself. Before she issued the command, she checked the version of Holographic Displays. My theory is that her PoloCl!ent or Dym3th exploits a vulnerability in HD related to console commands. Can you please look into this and let me know? Of course, I'm not blaming HD for the problem since some of our iptables weren't solid, but it still may be a real issue. Let me know if I may provide more info.

`./logs/ps.txt:2020-05-16-1.log.gz:[01:28:26] [Server thread/INFO]: xNOOBALICIOUSx issued server command: /help
./logs/ps.txt:2020-05-16-1.log.gz:[01:28:26] [Server thread/INFO]: [Essentials] xNOOBALICIOUSx was denied access to command.
./logs/ps.txt:2020-05-16-1.log.gz:[01:28:29] [Server thread/INFO]: xNOOBALICIOUSx issued server command: /ver
./logs/ps.txt:2020-05-16-1.log.gz:[01:28:39] [Server thread/INFO]: xNOOBALICIOUSx issued server command: /hd

*****Curiously, she was able to issue a command as the OP just after checking /hd here ^^^

./logs/ps.txt:2020-05-16-1.log.gz:[01:28:42] [Server thread/INFO]: xNOOBALICIOUSx lost connection: Disconnected
./logs/ps.txt:2020-05-16-1.log.gz:[01:31:24] [Server thread/INFO]: xNOOBALICIOUSx issued server command: /op xxGRIEFERxx
./logs/ps.txt:2020-05-16-1.log.gz:[01:31:24] [Server thread/INFO]: [xNOOBALICIOUSx: Made xNOOBALICIOUSx a server operator]

******* Here she's sudoing the OP and making herself OP ^^^**
`

I'm pretty sure it's unrelated, maybe she was checking random plugins. Here's the relevant part for that command in the source code.

I will close the issue, unless there's some evidence that the exploit was done through Holographic Displays. In that case I will reopen it.