18
Surprise security audit
posted ago by InvoluntaryPentest +19 / -1

Your code is closed source, so I kinda have to do this if I'm going to trust this site.

Apologies in advance if I break anything

HTML sanitization. These should all be displayed as text. If TD.W fails to sanitize, these will be rendered as elements. <script>alert('123')</script><iframe src="https://thedonald.win"></iframe><img src="https://i.redd.it/2iiivbyeejgy.jpg">

SQL sanitization: I hope to god that you're not saving user-submitted text directly. If you are, well, I hope you made backups. ';--";--&quot;; DROP TABLE Users;--

XSRF prevention: Going to test with JSFiddle. Results will be in comments.

4 comments
4 comments share save hide report block hide child comments
Comments (4)
sorted by:
4
joyinliberty 4 points ago +4 / -0

Thank you, I suggested this earlier. (security testing)

permalink save report block reply
2
InvoluntaryPentest [S] 2 points ago +2 / -0

Still working on an XSRF attack. (purely for grey-hat purposes)

permalink parent save report block reply
1
InvoluntaryPentest [S] 1 point ago +1 / -0

Testing a comment with </p><script>alert("123");</script>

permalink save report block reply
1
deleted 1 point ago +1 / -0