XSS Exploit on bitcointalk.org

atmclikk (OP)

Newbie

Offline

Activity: 30
Merit: 0

XSS Exploit on bitcointalk.org

September 23, 2013, 07:03:20 PM

#1

Mods please check this -

if you go to this thread - https://bitcointalk.org/index.php?topic=253749.380

then try to navigate to the next page, currently Chrome is throwing a red flag, mentioning something about the site 'dearhusband . com ' being known as having malicious code distributed from it. it looks like XSS to me. Just thought I'd mention it.

grue

Legendary

Offline

Activity: 2058
Merit: 1431

Re: XSS Exploit on bitcointalk.org

September 23, 2013, 07:29:07 PM

#2

Quote from: atmclikk on September 23, 2013, 07:03:20 PM

then try to navigate to the next page, currently Chrome is throwing a red flag, mentioning something about the site 'dearhusband . com ' being known as having malicious code distributed from it. it looks like XSS to me.

do you even know what XSS is? The warning was triggered because there were 2 images from a blacklisted site. It's most likely a image hosting site that was hacked to distribute malware.

images in question:
http://dearhusband.com/monoclemanhub1.JPG
http://dearhusband.com/monoclemanhub2.JPG

It is pitch black. You are likely to be eaten by a grue.

Adblock for annoying signature ads | Enhanced Merit UI

Maged

Legendary

Offline

Activity: 1204
Merit: 1015

Re: XSS Exploit on bitcointalk.org

September 23, 2013, 07:32:39 PM

#3

I think I fixed it (I unembedded the images). Let us know if it's still giving a warning, thanks!

Like my posts? Donate!
1MagedVeZqDtU4Jh5BdgvHpcWk9dXFzZY8

atmclikk (OP)

Newbie

Offline

Activity: 30
Merit: 0

Re: XSS Exploit on bitcointalk.org

September 23, 2013, 08:04:55 PM

#4

Quote from: grue on September 23, 2013, 07:29:07 PM

Quote from: atmclikk on September 23, 2013, 07:03:20 PM

then try to navigate to the next page, currently Chrome is throwing a red flag, mentioning something about the site 'dearhusband . com ' being known as having malicious code distributed from it. it looks like XSS to me.

do you even know what XSS is? The warning was triggered because there were 2 images from a blacklisted site. It's most likely a image hosting site that was hacked to distribute malware.

images in question:
http://dearhusband.com/monoclemanhub1.JPG
http://dearhusband.com/monoclemanhub2.JPG

no need to be a dick about it. yes i know what xss is. thats what my antivirus reported.

🏰 TradeFortress 🏰

Bitcoin Veteran
VIP
Legendary

Offline

Activity: 1316
Merit: 1043

👻

Re: XSS Exploit on bitcointalk.org

September 24, 2013, 01:00:31 AM

#5

Quote from: atmclikk on September 23, 2013, 08:04:55 PM

no need to be a dick about it. yes i know what xss is. thats what my antivirus reported.

An image is not a script, it can't do anything harmful unless you are on a very ancient browser.

grue

Legendary

Offline

Activity: 2058
Merit: 1431

Re: XSS Exploit on bitcointalk.org

September 24, 2013, 11:20:15 PM

#6

Quote from: atmclikk on September 23, 2013, 08:04:55 PM

Quote from: grue on September 23, 2013, 07:29:07 PM

do you even know what XSS is? The warning was triggered because there were 2 images from a blacklisted site. It's most likely a image hosting site that was hacked to distribute malware.
[...]

no need to be a dick about it. yes i know what xss is. thats what my antivirus reported.

>appeal to tone

It is pitch black. You are likely to be eaten by a grue.

Adblock for annoying signature ads | Enhanced Merit UI