Kawecki, really, your fear mongering is offensive.

Why are you trying to get others to worry about this? You have no idea what the API is. You have no idea what the security model is. You have no idea what can and cannot be done via RPC. You have no idea whether or not the RPC server will even listen to anything from outside your computer. (By the way, it won't accept any calls from outside your computer.)

You want to talk about risk? Every time you download free Poser content you run the risk of hacking much more easily.

Any pose, prop, or figure can include instructions to run a Python script. Any Python script can be included in anything at all, such as a Pose kit, or a free airplane, or a t-shirt.

Once you click on that item to load it into Poser, it is free to run any Python script on your machine, including scripts that were already there before you loaded this content. Since Python has no restrictions on what it can do, such free content can easily manipulate registry entries, modify any file on your system, do anything at all.

Knowing that, a hacker could easily publish some free poses and and sucker you into letting them take over your computer. This has been possible for years, yet it hasn't happened.

According to your argument, there should not be a Python interpreter in Poser, and no content should have the opportunity to run anything on your computer.

---

Renderosity forum reply notifications are wonky. If I read a follow-up in a thread, but I don't myself reply, then notifications no longer happen AT ALL on that thread. So if I seem to be ignoring a question, that's why. (Updated September 23, 2019)