+- Lookism - Aesthetics, Black Pill, and Masculinity Discussion (https://lookism.cc)
+-- Forum: Other (https://lookism.cc/Forum-Other)
+--- Forum: OffTopic (https://lookism.cc/Forum-OffTopic)
+--- Thread: [JFL] Stop using .org (Vulnerability) (/Thread-JFL-Stop-using-org-Vulnerability)
Stop using .org (Vulnerability) - Filler - 07-02-2025
Hello FEMBOYS and GENTLEMANS, today we will be discussing a vulnerability I found in larmacussmall.org!
I dont know if this vulnerability fits into the SSRF (Serverside request forgery) or information disclosure.
So basically the proxy.php (php file that proxies external content)
appears to:
1. Send a proxied request to the external cotent (to cache it)
2. When a user loads up on a page with the image, instead of their request going through proxy.php, it goes through unproxied.
NOTE: This is only a speculation I made while looking at the site through burp suite
Therefore, by opening a user profile / opening a thread with malicious replies, the attackers have your:
- Useragent (browser information)
- IP (internet a.. yeah you know what this is)
This is probably going to be fixed soon due to this thread (also the exploit is very incosistent)
Don't worry, i'm currently testing .org I will let you guys know about other findings
RE: Stop using .org (Vulnerability) - Filler - 07-02-2025
Note: I'm pretty sure this works in PMs / Chat aswell though I haven't tested it yet (I have a grey account from stealer logs)
RE: Stop using .org (Vulnerability) - Greypiller - 07-02-2025
retarded coders.org
RE: Stop using .org (Vulnerability) - Greypiller - 07-02-2025
@TRUE_CEL jfl at master nigger as an admin you should honestly be ashamed of the code of this site when a simple burp suite scan exposess a vuln
RE: Stop using .org (Vulnerability) - Nati - 07-02-2025
thats funny asf
RE: Stop using .org (Vulnerability) - Greypiller - 07-02-2025
(07-02-2025, 03:00 PM)Nati Wrote: thats funny asf
fucking fat fuck couldnt fix his damm code , meanwhile this site has had 0 uptime since launch despite a fuckton of ddos requessts
RE: Stop using .org (Vulnerability) - Nati - 07-02-2025
(07-02-2025, 03:01 PM)Greypiller Wrote:(07-02-2025, 03:00 PM)Nati Wrote: thats funny asf
fucking fat fuck couldnt fix his damm code , meanwhile this site has had 0 uptime since launch despite a fuckton of ddos requessts
If i knew how to do this kind of thing i would try it on numb tbh
RE: Stop using .org (Vulnerability) - Greypiller - 07-02-2025
(07-02-2025, 03:07 PM)Nati Wrote:they are most likely gonna patch it soon anyway , the mods usually use vpns anyways(07-02-2025, 03:01 PM)Greypiller Wrote:(07-02-2025, 03:00 PM)Nati Wrote: thats funny asf
fucking fat fuck couldnt fix his damm code , meanwhile this site has had 0 uptime since launch despite a fuckton of ddos requessts
If i knew how to do this kind of thing i would try it on numb tbh
RE: Stop using .org (Vulnerability) - Nati - 07-02-2025
(07-02-2025, 03:10 PM)Greypiller Wrote:(07-02-2025, 03:07 PM)Nati Wrote:they are most likely gonna patch it soon anyway , the mods usually use vpns anyways(07-02-2025, 03:01 PM)Greypiller Wrote:(07-02-2025, 03:00 PM)Nati Wrote: thats funny asf
fucking fat fuck couldnt fix his damm code , meanwhile this site has had 0 uptime since launch despite a fuckton of ddos requessts
If i knew how to do this kind of thing i would try it on numb tbh
Yeah, it sucks that im hardbanned on .org now over literally nothing
RE: Stop using .org (Vulnerability) - SubhumanEyes - 07-02-2025
Yeah, it sucks that im hardbanned on .org now over literally nothing
(07-02-2025, 03:11 PM)Nati Wrote:(07-02-2025, 03:10 PM)Greypiller Wrote: they are most likely gonna patch it soon anyway , the mods usually use vpns anyways
Yeah, it sucks that im hardbanned on .org now over literally nothing
yea me too...my ban reason is unhinged and threats cuz i said if i catch numbthepain it wont end pretty geg
(07-02-2025, 03:11 PM)Nati Wrote:(07-02-2025, 03:10 PM)Greypiller Wrote: they are most likely gonna patch it soon anyway , the mods usually use vpns anyways
Yeah, it sucks that im hardbanned on .org now over literally nothing
(07-02-2025, 03:11 PM)Nati Wrote:(07-02-2025, 03:10 PM)Greypiller Wrote: they are most likely gonna patch it soon anyway , the mods usually use vpns anyways
Yeah, it sucks that im hardbanned on .org now over literally nothing
(07-02-2025, 03:11 PM)Nati Wrote:(07-02-2025, 03:10 PM)Greypiller Wrote: Nati
they are most likely gonna patch it soon anyway , the mods usually use vpns anyways
Yeah, it sucks that im hardbanned on .org now over literally nothing
(07-02-2025, 03:11 PM)Nati Wrote:(07-02-2025, 03:10 PM)Greypiller Wrote: they are most likely gonna patch it soon anyway , the mods usually use vpns anyways
Yeah, it sucks that im hardbanned on .org now over literally nothing
(07-02-2025, 03:11 PM)Nati Wrote:(07-02-2025, 03:10 PM)Greypiller Wrote: they are most likely gonna patch it soon anyway , the mods usually use vpns anyways
Yeah, it sucks that im hardbanned on .org now over literally nothing
(07-02-2025, 03:11 PM)Nati Wrote:(07-02-2025, 03:10 PM)Greypiller Wrote: they are most likely gonna patch it soon anyway , the mods usually use vpns anyways
Yeah, it sucks that im hardbanned on .org now over literally nothing