Slashdot Mirror


Reddit Javascript Exploit Spreading Virally

Nithendil writes "guyhersh from reddit.com describes the situation (warning: title NSFW): Based on what I've seen today, here's what went down. Reddit user Empirical wrote javascript code where if you copied and pasted it into the address bar, you would instantly spam that comment by replying to all the comments on the page and submitting it. Later xssfinder posted a proof of concept where if you hovered over a link, it would automatically run a Javascript. He then got the brilliant idea to combine the two scripts together, tested it and it spread from there."

5 of 239 comments (clear)

  1. Is this good news or bad? by Anonymous Coward · · Score: 4, Funny

    I don't know. Sounds good !!

  2. Re:NSFW? by BlackSabbath · · Score: 4, Funny

    > Eye owl wise ewes a spill chucker sew eye no my spilling is core wrecked.

    Hey, whadda ya know? A sig with a New Zealand accent.

    (Yeah, yeah, I know, offtopic, blah, blah, mod-away...)

  3. Re:NSFW? by Yvan256 · · Score: 4, Funny

    The only fucking thing NSFW about the link is that it fucking says "What the fuck" in the title. And if you can read my fucking comment, you can go ahead and fucking click that link.

    And here's another "Fuck" just for the heck of it.

    Warning: my comment was NSFW and should not have been read.

  4. Re:NSFW? by tehcyder · · Score: 4, Funny

    Warning! The above post is NSFW!

    --
    To have a right to do a thing is not at all the same as to be right in doing it
  5. Re:NSFW? by Anonymous Coward · · Score: 4, Funny

    FUCK!!!