Critical security issue. #87

Legend-of-iPhoenix · 2018-03-23T23:09:21Z

You can alter peoples' high scores by injecting a small script into the chrome console. I'm currently fixing this issue by doing a partial restructure of the DB and entirely reworking our firebase database rules.

TheButton has been disabled temporarily.

Legend-of-iPhoenix · 2018-03-24T15:06:55Z

I have done a bit of work. I'll probably hold a closed beta of the changes with some of the more frequent contributors. @ticalc-travis and @jcgter777, namely.

josheewa · 2018-03-24T22:42:28Z

@Legend-of-iPhoenix Are there any important significant changes in anything that I need to copy over to my repo? I have lots of different stuff, in the html, js, and css. If there are any things I HAVE to copy over, I need to know.

Legend-of-iPhoenix added bug Something isn't working critical Prevents normal usage of TheButton for some or all users, or something that needs top priority. labels Mar 23, 2018

Legend-of-iPhoenix self-assigned this Mar 23, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Critical security issue. #87

Critical security issue. #87

Legend-of-iPhoenix commented Mar 23, 2018 •

edited

Legend-of-iPhoenix commented Mar 24, 2018

josheewa commented Mar 24, 2018

Critical security issue. #87

Critical security issue. #87

Comments

Legend-of-iPhoenix commented Mar 23, 2018 • edited

Legend-of-iPhoenix commented Mar 24, 2018

josheewa commented Mar 24, 2018

Legend-of-iPhoenix commented Mar 23, 2018 •

edited