You are viewing a single comment's thread from:

RE: Stored XSS vulnerability in hiveblockexplorer.com !! [SOLVED]

in #hive8 months ago

Well done ! But please in the future contact the maintainer so he can patch the security issue before releasing it to the public. You are endangering the ecosystem by doing it that way.

Sort:  

True, but..

  • I did not share the exploit;
  • I have been trying to reach him on multiple channels already;
  • There's no session to be compromised on that site (as I mentioned in the post, only the redirection bit is dangerous).

👍

PS. @howo Today I launched this, better?? 😏😏
[auto-replies to posts and comments with known compromised domains or phishing links]
https://hive.blog/hive/@keys-defender/new-feature-phishing-detection-and-auto-reply

cc: @therealwolf @saboin

Pretty cool tool !

@howo FYI - the issue is now resolved 👍
https://hive.blog/hive/@penguinpablo/qfk9ge