Skip to Content
-->

PSA: Posting known forum site security vulnerability

2 replies [Last post]
Manwhore
Offline
Joined: 01/18/2012

I just caught the site/forum being hacked. They're using the drupal ckeditor module, which is known to have vulnerabilities. They're editing user profiles and it seems they're changing out user emails associated with those accounts/profiles. So basically it's people on here pretending to be someone they're not, e.g. old forum users that aren't around anymore.

Just another attempt to smear me, the site, my work, integrity, and to attempt to create grounds for legal entrapment. 

__________________

I go in and I'm crisp, clean and my vocals are fucking coming out like music. - Anonymous MW student

- Autismus Terminus Finis (Root Cause/Cure of Autism Epidemic)

- Called Off My Wedding & Other Turn Tail Signs Of The American Male

Tap Or Click For Personal Coaching Information

Manwhore
Offline
Joined: 01/18/2012
They managed to still hack it

They managed to still hack it and change user edit settings for nodes. So basically it was wild west for awhile on node content

Anyway. Investigation continues..

__________________

I go in and I'm crisp, clean and my vocals are fucking coming out like music. - Anonymous MW student

- Autismus Terminus Finis (Root Cause/Cure of Autism Epidemic)

- Called Off My Wedding & Other Turn Tail Signs Of The American Male

Tap Or Click For Personal Coaching Information

leadscout
Offline
Joined: 09/27/2012
Does the private messaging

Does the private messaging system still work?