Bitcoin Forum
November 22, 2017, 08:21:25 AM *
News: Latest stable version of Bitcoin Core: 0.15.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: XSS Exploit on bitcointalk.org  (Read 869 times)
atmclikk
Jr. Member
*
Offline Offline

Activity: 30


View Profile
September 23, 2013, 07:03:20 PM
 #1

Mods please check this -

if you go to this thread - https://bitcointalk.org/index.php?topic=253749.380

then try to navigate to the next page, currently Chrome is throwing a red flag, mentioning something about the site 'dearhusband . com ' being known as having malicious code distributed from it.  it looks like XSS to me.  Just thought I'd mention it.
1511338885
Hero Member
*
Offline Offline

Posts: 1511338885

View Profile Personal Message (Offline)

Ignore
1511338885
Reply with quote  #2

1511338885
Report to moderator
Join ICO Now Coinlancer is Disrupting the Freelance marketplace!
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1511338885
Hero Member
*
Offline Offline

Posts: 1511338885

View Profile Personal Message (Offline)

Ignore
1511338885
Reply with quote  #2

1511338885
Report to moderator
grue
Global Moderator
Legendary
*
Offline Offline

Activity: 2030



View Profile
September 23, 2013, 07:29:07 PM
 #2

then try to navigate to the next page, currently Chrome is throwing a red flag, mentioning something about the site 'dearhusband . com ' being known as having malicious code distributed from it.  it looks like XSS to me.
do you even know what XSS is? The warning was triggered because there were 2 images from a blacklisted site. It's most likely a image hosting site that was hacked to distribute malware.

images in question:
http://dearhusband.com/monoclemanhub1.JPG
http://dearhusband.com/monoclemanhub2.JPG

It is pitch black. You are likely to be eaten by a grue.

Tired of annoying signature ads? Ad block for signatures
Maged
Legendary
*
Offline Offline

Activity: 1260


View Profile
September 23, 2013, 07:32:39 PM
 #3

I think I fixed it (I unembedded the images). Let us know if it's still giving a warning, thanks!

atmclikk
Jr. Member
*
Offline Offline

Activity: 30


View Profile
September 23, 2013, 08:04:55 PM
 #4

then try to navigate to the next page, currently Chrome is throwing a red flag, mentioning something about the site 'dearhusband . com ' being known as having malicious code distributed from it.  it looks like XSS to me.
do you even know what XSS is? The warning was triggered because there were 2 images from a blacklisted site. It's most likely a image hosting site that was hacked to distribute malware.

images in question:
http://dearhusband.com/monoclemanhub1.JPG
http://dearhusband.com/monoclemanhub2.JPG

no need to be a dick about it.  yes i know what xss is.  thats what my antivirus reported. 
TradeFortress
VIP
Legendary
*
Offline Offline

Activity: 910


View Profile
September 24, 2013, 01:00:31 AM
 #5

no need to be a dick about it.  yes i know what xss is.  thats what my antivirus reported. 
An image is not a script, it can't do anything harmful unless you are on a very ancient browser.
grue
Global Moderator
Legendary
*
Offline Offline

Activity: 2030



View Profile
September 24, 2013, 11:20:15 PM
 #6

do you even know what XSS is? The warning was triggered because there were 2 images from a blacklisted site. It's most likely a image hosting site that was hacked to distribute malware.
[...]

no need to be a dick about it.  yes i know what xss is.  thats what my antivirus reported.  
>appeal to tone

It is pitch black. You are likely to be eaten by a grue.

Tired of annoying signature ads? Ad block for signatures
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!