NFlex23 wrote:

Are you making sure to go to www.purr.ml? It works perfectly for me –

purr.ml

kccuber wrote:

NFlex23 wrote:

Are you making sure to go to www.purr.ml? It works perfectly for me –

ok i found the issue here. going to just this

purr.ml

is causing the issue. you should set up a redirect for purr.ml to www.purr.ml

Ciyob86 wrote:

NFlex23 wrote:

Looks like someone is trying to make redirects to other pages lol:

You should use fluffyscratch authentication to log usernames.

Chiroyce wrote:

I FOUND a vulnerability!!

Harakou wrote:

True, though it seems like the other example only allowed Scratch links too. Personally I don't see it as a big problem since there's relatively little chance of nefarious use,

Harakou's URL can no longer work, right? Now how do I tell you how this is caused?

Chiroyce wrote:

No one saw this?!

Chiroyce wrote:

I FOUND a vulnerability!!

Harakou wrote:

True, though it seems like the other example only allowed Scratch links too. Personally I don't see it as a big problem since there's relatively little chance of nefarious use,

Harakou's URL can no longer work, right? Now how do I tell you how this is caused?

potatophant wrote:

that's not a vulnerability, it's just a bug

DispIay wrote:

how do you login to the admin panel?

Chiroyce wrote:

DispIay wrote:

how do you login to the admin panel?

You cannot, only @NFlex23 can.

DispIay wrote:

im trying to look through the code and im trying to figure out what
if request.form == os.environ:
means

Chiroyce wrote:

DispIay wrote:

im trying to look through the code and im trying to figure out what
if request.form == os.environ:
means

Basically request.form contains what the user entered, and os.environ is the password, if what the user entered matches the password, they're give access to the admin panel

DispIay wrote:

Chiroyce wrote:

DispIay wrote:

im trying to look through the code and im trying to figure out what
if request.form == os.environ:
means

Basically request.form contains what the user entered, and os.environ is the password, if what the user entered matches the password, they're give access to the admin panel

I figured out something, There’s a thing at the top called “import os” and I think the password is in there. All I need to know is where “os” is. Also it’s if request.form['pass'] == os.environ['PASS']:

Harakou wrote:

DispIay wrote:

Chiroyce wrote:

DispIay wrote:

im trying to look through the code and im trying to figure out what
if request.form == os.environ:
means

Basically request.form contains what the user entered, and os.environ is the password, if what the user entered matches the password, they're give access to the admin panel

I figured out something, There’s a thing at the top called “import os” and I think the password is in there. All I need to know is where “os” is. Also it’s if request.form['pass'] == os.environ['PASS']:

That's the Python module os. It's getting the value of an environment variable, so you're not going to find it in the code.

DispIay wrote:

Harakou wrote:

DispIay wrote:

Chiroyce wrote:

DispIay wrote:

im trying to look through the code and im trying to figure out what
if request.form == os.environ:
means

Basically request.form contains what the user entered, and os.environ is the password, if what the user entered matches the password, they're give access to the admin panel

I figured out something, There’s a thing at the top called “import os” and I think the password is in there. All I need to know is where “os” is. Also it’s if request.form['pass'] == os.environ['PASS']:

That's the Python module os. It's getting the value of an environment variable, so you're not going to find it in the code.

B r u h

Chiroyce wrote:

potatophant wrote:

that's not a vulnerability, it's just a bug

How? They shared a screenshot of quite a lot of the short URLs, so I could just delete the others as well, but I didn't. Since I wanted to tell them about it. It is vulnerable now.
unless they add auth for the /delete post request endpoint

Chiroyce wrote:

potatophant wrote:

that's not a vulnerability, it's just a bug

How? They shared a screenshot of quite a lot of the short URLs, so I could just delete the others as well, but I didn't. Since I wanted to tell them about it. It is vulnerable now.
unless they add auth for the /delete post request endpoint