WTF Hacked? WTF?



  • Try go to http://worsethanfailure.com/Comments/Multiple-Choice.aspx

    I don't think you'll be commenting on that anytime soon.

     

    Cool hacker tag-picture though.
     



  • Pretty friendly little attack. Props to that guy for not screwing up the site.

    Kind of an unfortunate irony, though, that a web site which so frequently ridicules insecure Internet services is, itself, insecure...
     



  • It's lame, the cheapest kind of deface injecting js scripts to comments. He won't be able to do anything with the main site though.



  • yeah...

    and i just broke the rest of it...

     
    sorry guys... i'm too tired to do anything..

    someone call alex or jake to fix this.



  • @n3txpert said:

    It's lame, the cheapest kind of deface injecting js scripts to comments. He won't be able to do anything with the main site though.

     

    Yeah it is lame but i'm guessing the guy was being ironic.  Therefore more funny than lame, IMHO



  • @Kyanar said:

    Try go to http://worsethanfailure.com/Comments/Multiple-Choice.aspx

    Ugh, thanks for reminding me why I stopped reading the comments....


  • ♿ (Parody)

    D'oh! The Comment Body and Author Name were both HtmlEncoded, but the Comment Subject was not. Easy fix.

    I'm going to have a word with the QA team about this! Such a blatant bug should never have made it past the tome of test cases.


Log in to reply