codelikecraze's profile @codelikecraze

@ee i feel like I am pretty notorious for hacking…. something. I can’t tell for anonymity purposes, but @micahlt knows who I am, and what I found….. a few vulnerabilitys in.

Jun 18, 2022, 3:36 PM
2 0 18

comments (single view)

View parent
oren's profile @oren Jun 18, 2022, 3:45 PM

Was it hard to hack?

codelikecraze's profile @codelikecraze Jun 18, 2022, 3:47 PM

No… it was a mess. 99% of all user input was not sanitized.

oren's profile @oren Jun 18, 2022, 3:50 PM

Must have been hastily built bc Micah doesn't usually make stuff that badly, and its actually really easy to sanitize input. Even just a RegEx can do a lot

codelikecraze's profile @codelikecraze Jun 18, 2022, 3:51 PM

It was one of his biggest and most popular projects.

oren's profile @oren Jun 18, 2022, 3:52 PM

:O did i overestimate him?

codelikecraze's profile @codelikecraze Jun 18, 2022, 3:53 PM

yes. and after all the vulnerabilities were fixed, and he had an amazing developer friendly site, he… completely restarted the project. :clap:

codelikecraze's profile @codelikecraze Jun 18, 2022, 3:54 PM

And someone else found a vulnerability that allowed you to log into anyones account.

See more replies
View all comments