Fix log4j exploit for default configuration

Author: 4drian3d

src/main/java/me/dreamerzero/chatregulator/ChatRegulator.java

@@ -69,14 +69,14 @@ public ChatRegulator(final ProxyServer server, Logger logger, @DataDirectory Pat
         this.server = server;
         this.path = path;
         this.logger = logger;
+        ChatRegulator.plugin = this;
     }
 
     /**
      * Initialization of the plugin
      */
     @Subscribe
     public void onProxyInitialization(final ProxyInitializeEvent event) {
-        ChatRegulator.plugin = this;
         server.getConsoleCommandSource().sendMessage(MiniMessage.miniMessage()
             .parse("<gradient:#f2709c:#ff9472>ChatRegulator</gradient> <gradient:#DAE2F8:#D4D3DD>has started, have a very nice day</gradient>"));
         Configuration.loadConfig(path, logger);

src/main/java/me/dreamerzero/chatregulator/commands/ChatRegulatorCommand.java

@@ -215,6 +215,7 @@ private void parseClearCommand(String[] args, Audience source, MiniMessage mm){
                     }
                     break;
                 default:
+                    //Does this exclude other audiences that should not receive the component, probably the console?    
                     Audience.audience(server.getAllPlayers()).sendMessage(GeneralUtils.spacesComponent);
                     source.sendMessage(mm.deserialize(clearmessages.getGlobalMessage()));
                     break;

src/main/java/me/dreamerzero/chatregulator/config/Blacklist.java

@@ -23,7 +23,8 @@ public static class Config{
             "p(u|@|v)ssy",
             "(?:(?:https?|ftp|file):\\/\\/|www\\.|ftp\\.)(?:\\([-A-Z0-9+&@#\\/%=~_|$?!:,.]*\\)|[-A-Z0-9+&@#\\/%=~_|$?!:,.])*(?:\\([-A-Z0-9+&@#\\/%=~_|$?!:,.]*\\)|[A-Z0-9+&@#\\/%=~_|$])",
             "(i|@|l|j|1|y)mb(3|@|e|x)c(i|@|l|j|1|y)l",
-            "m(o|@|0|x|8)th(3|@|e|x)rf(u|@|v)ck(3|@|e|x)r"
+            "m(o|@|0|x|8)th(3|@|e|x)rf(u|@|v)ck(3|@|e|x)r",
+            "\\$\\{(jndi|log4j|sys|env|main|marker|java|base64|lower|upper|web|docker|kubernetes|spring|jvmrunargs|date|ctx)\\:.*\\}"
         );
 
         @Comment("Sets the commands that cannot be executed\n(configurable in the command module)")

src/main/java/me/dreamerzero/chatregulator/config/ConfigManager.java

@@ -73,9 +73,6 @@ private static void sendTitle(String message, Audience player, PlaceholderResolv
      * @param type the type of infraction
      */
     public static void sendAlertMessage(InfractionPlayer infractor, InfractionType type){
-        Audience staff = Audience.audience(ChatRegulator.getInstance().getProxy().getAllPlayers().stream()
-                .filter(op -> op.hasPermission("chatregulator.notifications"))
-                .collect(Collectors.toList()));
         String message = "";
         Messages.Config messages = Configuration.getMessages();
         MiniMessage mm = MiniMessage.miniMessage();
@@ -89,6 +86,10 @@ public static void sendAlertMessage(InfractionPlayer infractor, InfractionType t
             case NONE: return;
         }
 
+        Audience staff = Audience.audience(ChatRegulator.getInstance().getProxy().getAllPlayers().stream()
+                .filter(op -> op.hasPermission("chatregulator.notifications"))
+                .collect(Collectors.toList()));
+
         staff.sendMessage(
             mm.deserialize(
                 message,