Supreme Scam report against @Caviar

[12.603]

@Fivio @pipin Please forward him all of the vulns/bugs

[13.656]

@Fivio @pipin Please forward him all of the vulns/bugs

I have mentioned in the post.. its from quickpaste.it 

fivio will forward him .. i've already sent em to fivio in tg

[1.166]

@Fivio @pipin Please forward him all of the vulns/bugs

I did, he’s simply lazy/completely useless. The report was opened more than a week ago and in all that time he couldn’t change the site logo like I requested many time. It’s ridiculous to give him an extra 48 hours, I paid a month ago. Never deal with someone this lazy.

[417]

@Fivio @pipin Please forward him all of the vulns/bugs

I did, he’s simply lazy/completely useless. The report was opened more than a week ago and in all that time he couldn’t change the site logo like I requested many time. It’s ridiculous to give him an extra 48 hours, I paid a month ago. Never deal with someone this lazy.

Don't make assumptions without knowing the whole thing, please. I changed the logo JUST as you asked on your own server, I sent you your server's IP address to check and I've been telling you for days that migration is complete and all the changes are done, and just needed to see the vulnerabilities and then point the domain to his server's ip which thank you @pipin for providing

1. Clickjacking

Clickjacking attacks aren't gonna reveal much information, it would make sense to add X-Frame headers to protect it if it was a site that asked for login information and stuff but it is good practice to add security for this. I will fix this one so don't worry

2. Proxied IP

According to Pipin the site doesn't have a proxied IP...yeah sure I have no comment on this just use intodns to check

3. Adding more than 1 line of title crashes the page

This is normal, the site doesn't allow you to add more than 1 line in the title and it's possible to bypass it but makes no sense it doesn't do much just f5ing brings everything back to normal

4. The overlay issue is fixed, it had something to do with caching

Now that I'm aware of all the issues I've migrated the server successfully

if anyone encounters any issues it might be because DNS hasn't fully propagated yet and can take up to 8hrs or more.


And side note, I personally have 2 jobs, and I work full time driving trains across states so Cracked.io isn't my only job here, i would've been homeless if it was

[1.166]

@Fivio @pipin Please forward him all of the vulns/bugs

I did, he’s simply lazy/completely useless. The report was opened more than a week ago and in all that time he couldn’t change the site logo like I requested many time. It’s ridiculous to give him an extra 48 hours, I paid a month ago. Never deal with someone this lazy.

Don't make assumptions without knowing the whole thing, please. I changed the logo JUST as you asked on your own server, I sent you your server's IP address to check and I've been telling you for days that migration is complete and all the changes are done, and just needed to see the vulnerabilities and then point the domain to his server's ip which thank you @pipin for providing

1. Clickjacking

Clickjacking attacks aren't gonna reveal much information, it would make sense to add X-Frame headers to protect it if it was a site that asked for login information and stuff but it is good practice to add security for this. I will fix this one so don't worry

2. Proxied IP

According to Pipin the site doesn't have a proxied IP...yeah sure I have no comment on this just use intodns to check

3. Adding more than 1 line of title crashes the page

This is normal, the site doesn't allow you to add more than 1 line in the title and it's possible to bypass it but makes no sense it doesn't do much just f5ing brings everything back to normal

4. The overlay issue is fixed, it had something to do with caching

Now that I'm aware of all the issues I've migrated the server successfully

if anyone encounters any issues it might be because DNS hasn't fully propagated yet and can take up to 8hrs or more.


And side note, I personally have 2 jobs, and I work full time driving trains across states so Cracked.io isn't my only job here, i would've been homeless if it was

Paid you a month ago, stop acting like you didn’t do me wrong

[13.656]

@Fivio @pipin Please forward him all of the vulns/bugs

I did, he’s simply lazy/completely useless. The report was opened more than a week ago and in all that time he couldn’t change the site logo like I requested many time. It’s ridiculous to give him an extra 48 hours, I paid a month ago. Never deal with someone this lazy.

Don't make assumptions without knowing the whole thing, please. I changed the logo JUST as you asked on your own server, I sent you your server's IP address to check and I've been telling you for days that migration is complete and all the changes are done, and just needed to see the vulnerabilities and then point the domain to his server's ip which thank you @pipin for providing

1. Clickjacking

Clickjacking attacks aren't gonna reveal much information, it would make sense to add X-Frame headers to protect it if it was a site that asked for login information and stuff but it is good practice to add security for this. I will fix this one so don't worry

2. Proxied IP

According to Pipin the site doesn't have a proxied IP...yeah sure I have no comment on this just use intodns to check

3. Adding more than 1 line of title crashes the page

This is normal, the site doesn't allow you to add more than 1 line in the title and it's possible to bypass it but makes no sense it doesn't do much just f5ing brings everything back to normal

4. The overlay issue is fixed, it had something to do with caching

Now that I'm aware of all the issues I've migrated the server successfully

if anyone encounters any issues it might be because DNS hasn't fully propagated yet and can take up to 8hrs or more.


And side note, I personally have 2 jobs, and I work full time driving trains across states so Cracked.io isn't my only job here, i would've been homeless if it was

Make a condition to The title if
char more than 20 it should return popup or some error msg ...

Also we can fix click jacking i've reported that in many sites its well know general vul in most of the sites

[417]

I did, he’s simply lazy/completely useless. The report was opened more than a week ago and in all that time he couldn’t change the site logo like I requested many time. It’s ridiculous to give him an extra 48 hours, I paid a month ago. Never deal with someone this lazy.

Don't make assumptions without knowing the whole thing, please. I changed the logo JUST as you asked on your own server, I sent you your server's IP address to check and I've been telling you for days that migration is complete and all the changes are done, and just needed to see the vulnerabilities and then point the domain to his server's ip which thank you @pipin for providing

1. Clickjacking

Clickjacking attacks aren't gonna reveal much information, it would make sense to add X-Frame headers to protect it if it was a site that asked for login information and stuff but it is good practice to add security for this. I will fix this one so don't worry

2. Proxied IP

According to Pipin the site doesn't have a proxied IP...yeah sure I have no comment on this just use intodns to check

3. Adding more than 1 line of title crashes the page

This is normal, the site doesn't allow you to add more than 1 line in the title and it's possible to bypass it but makes no sense it doesn't do much just f5ing brings everything back to normal

4. The overlay issue is fixed, it had something to do with caching

Now that I'm aware of all the issues I've migrated the server successfully

if anyone encounters any issues it might be because DNS hasn't fully propagated yet and can take up to 8hrs or more.


And side note, I personally have 2 jobs, and I work full time driving trains across states so Cracked.io isn't my only job here, i would've been homeless if it was

Make a condition to The title if
char more than 20 it should return popup or some error msg ...

Also we can fix click jacking i've reported that in many sites its well know general vul in most of the sites

yeah good suggestion i'll add that

And yes fixing clickjacking is an easy solution and can even be done through Cloudflare workers and yet it's a common vul in most websites

[1.166]

@Darkness I opened the report 2 weeeks ago and afaik it’s not any closer from being done. This is ridiculous

---

@Darkness @Caviar is unable to update me. He dosen’t message me ever so I have absolutely no idea what’s happening. I told @Liars I’d give him until last Thursday but with @Caviar TOTAL lack of professionalism and communication I have no idea if anything happened since then