Ticket Information - ID: #513
ID: | Category: | Severity | Reproducibility | Date Submitted | Updated By: |
---|---|---|---|---|---|
0000513 | Bug Reporting | normal | always | 05/26/11 10:45PM | Yavie |
|
|
Summary: | Codes |
Description: | User: gelboot http://gelbooru.com/index.php?page=account&s=profile&id=81478 He's been going around adding some weird code to the tags, and it seems to be crashing that particular post such as: http://gelbooru.com/index.php?pa...nguage%3D%27javascript%27 But there are a few other tags that go along with that, so I am not sure which 'tag' exactly is causing the problem. This is an example of what happens to the post with those tags. http://gelbooru.com/index.php?page=post&s=view&id=2676 |
Additional Info: |
TiTaNz replied at 2011-05-27 15:33:40 |
You fixed that one post but the description auto shortened the link for the tag for some reason http://gelbooru.com/index.php?page=post&s=list&tags=language%3D%27javascript%27 And it he's back with a new account User: gelboot2 http://gelbooru.com/index.php?page=account&s=profile&id=83520 |
TiTaNz replied at 2011-05-28 07:04:29 |
Okay for something like this: http://gelbooru.com/index.php?page=post&s=list&tags=%27sample_dir%27%3A%27samples%27%2C Do I go and change them back, or do I wait for an admin to 'revert' the tags? |
lozertuser replied at 2011-05-28 12:52:06 |
Wait for moderator or admin. |
TiTaNz replied at 2011-05-29 11:56:21 |
There is a lot, do I make a list and send them to someone or just wait till a moderator or admin finds them? |
raki replied at 2011-05-31 06:17:33 |
Someone is trying to exploit XSS on Gelbooru! Maybe? |
Dolljoints replied at 2011-05-31 13:47:37 |
This time, it looks like it was just a buggy script that occasionally added part of the gelbooru page's own source to the tag string it was trying to set. |
TiTaNz replied at 2011-06-08 04:57:13 |
The tags still haven't been reverted, I can make a list, is there a mod who I should send them too? |
lozertuser replied at 2011-06-08 19:57:53 |
Keep waiting. |
Yavie replied at 2011-06-14 00:36:30 |
more bad coding: http://gelbooru.com/index.php?page=post&s=view&id=16399# ipt language='javascript' src='http://server.cpmstar.com/view.aspx?poolid=" |
Yavie replied at 2011-06-17 18:27:31 |
http://gelbooru.com/index.php?page=post&s=list&tags=%24%28%27tags%27%29.focus%28%29%3B}else{%24%28%27edit_form%27%29.hide%28%29%3B} |