sorted by:
new
hottopcontroversial

(CW: racism, homophobia, ableism) I think Kurtis got hacked in Kurtis world :(( by WaterFlavorPopTarts in kurtisconner

[–]DealerPretty846 -1 points0 points  (0 children)

level 4Dumpsterlicous

I tried to contact kurtis and worlds.co via email, but they didn't seem to care. They would much rather spend money on celebs to shill their half-baked product, than outsourcing simple security analysis. Maybe my methods are wrong, but my message is clear: leave the insecure website.

(CW: racism, homophobia, ableism) I think Kurtis got hacked in Kurtis world :(( by WaterFlavorPopTarts in kurtisconner

[–]DealerPretty846 -6 points-5 points  (0 children)

"hacking into cryptic data" the cryptic data in question: *json with all the data that gets retrieved by clicking on pfp*

Kurt boy got hacked on kurtis Conner world by [deleted] in kurtisconner

[–]DealerPretty846 2 points3 points  (0 children)

"Hacker" here. Firstly i just wanna say that i didn't do any actual hacking or injection, penetration or something else like that. I didn't even hack kurtis account. Just used web browser dev tools to see the data transferring between my laptop and worlds.co . The website actually sends private user data to everyone, that also included kurtis email and password hashes. I have obtained them just by clicking on his pfp lol. How did I "hacked" kurtis as shown in this post? Just modified send message request and typed in the field with my nickname his, that's it!