2025-12-31 21:37:38
VulnCheck
PUBLISHED
PocketMine-MP versions prior to 4.18.1 contain an improper input validation vulnerability in inventory transaction handling. A remote attacker with a valid player session can request that the server drop more items than are available in the players hotbar, triggering a server crash and resulting in denial of service.