zlacker

[return to "Show HN: Non.io, a Reddit-like platform Ive been working on for the last 4 years"]
1. chriss+Bc3[view] [source] 2023-06-13 12:05:16
>>jjcm+(OP)
When I load the all page, I get an alert that just says "1", which feels like it's probably a successful XSS attack. Given that, I can't justify putting my credit card number directly into the site. If it took Paypal, Apple Pay, or similar I would absolutely give it a try for a few months.

Screenshot of the alert (imgur marked it as nsfw because it includes a thumbnail of a post that is mildly nsfw): https://imgur.com/a/TmwO1jg

The likely culprit: https://imgur.com/a/rJrLxfn

◧◩
2. Psycho+3i3[view] [source] 2023-06-13 12:36:46
>>chriss+Bc3
It appears that it is the post at https://non.io/xss
[go to top]