| Description: | In a nutshell, the flood control might not be working properly. The system, somehow, let me to add multiple images at once. You can verify it by yourself by checking out my favorites (quick link bellow).
I remember Gelbooru seemingly being under very heavy load (or my internet connection being bad) and I was pressing 'Add to Favorites' multiple times before the 'This post is already in your favorites!' started appearing, which is probably the origin of this issue (although I'm unable to reproduce it now.)
This is a very large vulnerability, especially if this kind of issue applies to comments as well, cause an attacker can spam AJAX requests and inject dozens of posts before the flood control comes to its senses, making the attack a dozen times more efficient.
Link to my favorites: https://gelbooru.com/index.php?page=favorites&s=view&id=174738 |