- Portals
- The Current Year
- ED in the News
- Admins
- Help ED Rebuild
- Archive
- ED Bookmarklet
- Donate Bitcoin
Contact an admin on Discord or EDF if you want an account. Also fuck bots.
2012 GNAA Tumblr Ruin: Difference between revisions
imported>Meepsheep |
imported>Meepsheep |
(No difference)
|
Revision as of 05:15, 4 December 2012
On December 3, 2012, the Gay Nigger Association of America, both legally and effectively, exploited a XSS vulnerability in popular web-blog service tumblr resulting in absolute ruin of thousands of blogs.
And thus with a mere few lines of javascript, an estimated 14,000 users reblogged the following post:
This was found to be such an outrage that uncounted hundreds of news sources picked up the story.
How could this happen!?!?!?
For those of you without a degree in CSIII, XSS (cross site scripting) means a website does not properly sanitize input and thus script can be executed on the page. This is one of the oldest methods of web penetration, and should be extinct in 2012; thanks to the hard working development team at websites like tumblr, these vulnerabilities remain unpatched to be exploited by people like the GNAA.
There were numerous XSS vulnerabilities embedded inside of tumblr, including in the video post field (the same one applied by the GNAA), the image post field, and every single mobile post field.
You're going to jail!!!!!
No accounts or data were compromised without consent of the account holder or webowners, merely the "reblog" function was utilized. Think of it as a site feature.
What did tumblr do to deserve this?
First off, tumblr was made aware of the vulnerability two weeks prior to the exploit. We at the GNAA did not receive a single word back from them after attempting to assist them in securing their services.
But moreover, tumblr does no more that provide a shield of relevance to bloggers of the worst variety. Bronies sharing pornographic images of children's cartoons, Hot-Topic shoppers showing off their latest Invader Zim piercings, and New York hipsters spending 20% of their free time posting their lunches to instagram can all be found carelessly grazing on tumblr, waiting for the next biggest happening to reblog and share with all (omg) 200 followers. Disgusting. Not only does this filth exist in the stores, schools, and places of work of the world, but is continuing to populate the gene pool, giving birth to even more abominations of mankind.
Is this truly the future that great visionaries of the past dreamed for?