forums.rs

Forums

RS-Linkify Thread is sticky

Quick find code: 261-262-33-65181208

of 1105
Meredith wtf

Meredith wtf

Posts: 4,160 Adamant Posts by user Forum Profile RuneMetrics Profile
Currently, Linkify protects against someone using the eval function, which is pretty dangerous, but, obviously, there are ways around that.

I think the easiest way to break this exploit is to grab the post content with JavaScript instead of PHP, but that mostly falls on Jagex to fix.

05-Dec-2013 22:35:59

Amaethwr
Aug Member 2008

Amaethwr

Posts: 14,634 Opal Posts by user Forum Profile RuneMetrics Profile
So basically Jagex dun goof'd

E: How long do you think for them to fix it? Lol

­­­­
Amæ
Life as we know it could be gone in a minute
­­­­
Selective Completionist

05-Dec-2013 22:37:55 - Last edited on 05-Dec-2013 22:42:00 by Amaethwr

Meredith wtf

Meredith wtf

Posts: 4,160 Adamant Posts by user Forum Profile RuneMetrics Profile
I'm not sure

If they truly understand how serious this is, they'll have it done by tomorrow

But I think there's a good chance that they won't take it that seriously

I mean, someone can be phished without ever leaving the RS site. That's really bad.

05-Dec-2013 22:45:02

Indecent Act

Indecent Act

Posts: 7,456 Rune Posts by user Forum Profile RuneMetrics Profile
I was thinking about this before I went to sleep, was going to test a simple alert in post but it looks like I don't need to.

I'll do another update very soon to sort some of these examples :)

06-Dec-2013 02:39:07 - Last edited on 06-Dec-2013 02:40:54 by Indecent Act

Quick find code: 261-262-33-65181208 Back to Top