Link detection can be bypassed using URI encoded characters

Question

Link detection can be bypassed using URI encoded characters

NurMarvin opened this issue 3 years ago · 2 comments

By using URI encoded characters it's possible to bypass Vortex's (invite) link detection. Whilst the link itself isn't clickable, an embed is still getting generated which is clickable.
The following example is for https://discord.gg/ian which was converted to https://%64%69%73%63%6f%72%64%2e%67%67/%69%61%6e using URI encoding in order to bypass the filter:

Answer 1 · 2021-10-24T14:12:37.000Z

I'll look into that some time, unless jagrosh does first.

Answer 2 · 2021-10-24T15:38:56.000Z

URI requoting/encoding gives me the same result as well