Homebrew [WIP]NTRDB

[thunderjackl]

This is going to be a problem

Sent from my SM-G550T1 using Tapatalk

Nvm just read the comments Above

Sent from my SM-G550T1 using Tapatalk

 

[Deleted member 373057]

This is going to be a problem

Sent from my SM-G550T1 using Tapatalk

This. Fix XSS, ASAP. Last thing you want is porn on the site, which could get you in trouble.

 

[ItsKaitlyn03]

Welp someone made a XSS to delete the whole site... RIP.

 

[Mark McDonut]

this is why we can't have anything nice. people are fucking pieces of shit.

was the retard dumb enough to leave his "tag" so we can fuck his shit up?

 

[ItsKaitlyn03]

I mostly did a memey XSS, I did an alert box and rick roll nothing else

 

[Mark McDonut]

oh so you destroyed a community project to be a douchebag?

great work. I'm sure the author appreciated you "Showing him an exploit" by doing something you can't reverse.

what are you fucking 5?

 

[ItsKaitlyn03]

I didn't delete the fucking site.

--------------------- MERGED ---------------------------

oh so you destroyed a community project to be a douchebag?

great work. I'm sure the author appreciated you "Showing him an exploit" by doing something you can't reverse.

what are you fucking 5?

Actually it can be reversed by deleting some plugins that were XSS exploits in the database. It can be definitely reversed.

 

[Mark McDonut]

I didn't delete the fucking site.

--------------------- MERGED ---------------------------


Actually it can be reversed by deleting some plugins that were XSS exploits in the database. It can be definitely reversed.

people like you are fucking cancer.

you could have pmed him. YOU are the only asshole injecting code so, yeah good job.

 

[thunderjackl]

oh so you destroyed a community project to be a douchebag?

great work. I'm sure the author appreciated you "Showing him an exploit" by doing something you can't reverse.

what are you fucking 5?

How is he a douchebag? He just wanted to help the OP out before there was a chance of it getting deleted

Sent from my SM-G550T1 using Tapatalk

 

[Mark McDonut]

How is he a douchebag? He just wanted to help the OP out before there was a chance of it getting deleted

Sent from my SM-G550T1 using Tapatalk

no, he showed off by being a dick.

nothing was exploited before he came along. you prepare a report of a vulnerability and pm the creator, you don't fuck with their site. Now no one can use it now and the reason it's broken is because someone wanted to be a script kiddie. Big fucking help.

 

[ItsKaitlyn03]

no, he showed off by being a dick.

nothing was exploited before he came along. you prepare a report of a vulnerability and pm the creator, you don't fuck with their site. Now no one can use it now and the reason it's broken is because someone wanted to be a script kiddie. Big fucking help.

Listen, n**** (not intended to be racist) I didn't delete the WHOLE FUCKING SITE I just SIMPLY added a ALERT BOX saying "BOI I HECKED UR SITE" and a fucking rick roll... I swear I didn't do anything else.

 

[Mark McDonut]

Listen, n**** (not intended to be racist) I didn't delete the WHOLE FUCKING SITE I just SIMPLY added a ALERT BOX saying "BOI I HECKED UR SITE" and a fucking rick roll... I swear I didn't do anything else.

then why does the whole site white-out when i click past them? you broke it. Great job.

next time test your injected scriptshit on your own box before you push it to someone else's live production project. I'm sure the author's going to have a blast deleting what you did.

 

[Elizabethx90]

Listen, n**** (not intended to be racist) I didn't delete the WHOLE FUCKING SITE I just SIMPLY added a ALERT BOX saying "BOI I HECKED UR SITE" and a fucking rick roll... I swear I didn't do anything else.

You're on gbatemp, where only a small fraction understand this. It's better that you brought this to light rather than someone malicious.

then why does the whole site white-out when i click past them? you broke it. Great job.

You're an idiot. That was someone else.

"name": "<script>$(\".table td:empty\").parent().remove()</script>",
"version": "1",
"plg": "http://octonezd.pw",
"pic": "https://i.imgur.com/3BXZUOa.png",
"desc": "pls sanitize input <3",
"TitleID": "Not game",
"developer": "<script>$(\".table td:empty\").parent().remove()</script>",

 

[ItsKaitlyn03]

I ment to post that but yeah someone did that

 

[Mark McDonut]

You're on gbatemp, where only a small fraction understand this. It's better that you brought this to light rather than someone malicious.

You're an idiot. That was someone else.

Fuck you, he's the only one talking about injecting xss.

 

[thunderjackl]

then why does the whole site white-out when i click past them? you broke it. Great job.

next time test your injected scriptshit on your own box before you push it to someone else's live production project. I'm sure the author's going to have a blast deleting what you did.

Dude there are people that go around the internet looking for sites that have XSS injection. It was only a matter of time before someone deleted it. The OP was lucky that someone pointed it out before it was deleted.

 

[Mark McDonut]

Dude there are people that go around the internet looking for sites that have XSS injection. It was only a matter of time before someone deleted it. The OP was lucky that someone pointed it out before it was deleted.

ah the old "good thing a 'good' person hacked it first" analogy.

last I checked only one person is bragging about it and he's in this thread

Also, the site's broken. why I recommended testing on your own shit before breaking someone elses.

 

[Majickhat55]

1. Any dev worth their salt keeps a backup of source code in more than one place, so all shouldn't be lost.
2. If you found a flaw (injectible XSS) in his site, he could have been PMd about the issue, and not "shown" by actually doing it in public.
3. It would be hard to argue that you weren't the one to delete the site considering you're the only one admitting to injecting your popup/rick roll. Then suddenly everything is gone in a very small time frame. Not to say it was you (I can't prove anything beyond reasonable doubt) but it is pretty far fetched to assume it was some other random person with malicious intent.

In any case, OP make sure you fix your XSS when/if you decide to re-upload your work. Very cool project BTW and I think it will be useful to a lot of new NTR users, so thanks!!

 

[Elizabethx90]

ah the old "good thing a 'good' person hacked it first" analogy.

last I checked only one person is bragging about it and he's in this thread

Dense as lead, aren't we?

All OP had to do was google 'sanitize input python', and the first result works >_>
Maybe I should just setup some loop to send the same http request until he fixes it.

 

[Majickhat55]

Or instead of "throwing tomatoes" you guys can PM the dude and help him fix it. Not continue to rub it in his face that he made a mistake, grow up.