disable javascript to see the forums/or use mobile

[aleksv]

just saying ^^

 

[Peteyandjia]

 

[aleksv]

someone put a bit of code in the notices thingy

 

[beefcake180]

Mobile version works too. What a douche.

 

[Land]

wait whats going on? on my phone and everything's good

 

[aleksv]

i hope the people see the thread on the frontpage ^^

 

[aleksv]

wait whats going on? on my phone and everything's good

someone injected a little bit of code to redirect sherdog forums to his twitter account.
similar like the one where the ufc site was redirected to someones homepage

 

[beefcake180]

wait whats going on? on my phone and everything's good

Some fuck from the UG hacked the forums so it sends you to his twitter everytime.

 

[osudude]

I disabled scripts and managed to dismiss the notice and now no redirecting anymore with scripts back on.

 

[Chute Boxe Hero]

This is a script kiddy. He added/injected this javascript (a whole 1 line) to the Notices area of sherdog.net...

	<script type="text/javascript">
<!--
window.location = "http://twitter.com/mentalug/"
//-->
</script>

These forums have been vulnerable to Cross-Site Scripting and even XSRF for years. This is just a script injected to redirect to his twitter page. If he was smart (which he's not) then he would've used an HTML redirect instead...

<meta http-equiv="refresh" content="0;URL='http://twitter.com/mentalug/'">

 

[slavomir]

Yep experienced it few minutes ago so I switched to my mobile. Any idea when it will be fixed?

 

[Leo462]

This is a script kiddy. He added/injected this javascript (a whole 1 line) to the Notices area of sherdog.net...

	<script type="text/javascript">
<!--
window.location = "http://twitter.com/mentalug/"
//-->
</script>

These forums have been vulnerable to Cross-Site Scripting and even XSRF for years. This is just a script injected to redirect to his twitter page. If he was smart (which he's not) then he would've used an HTML redirect instead...

<meta http-equiv="refresh" content="0;URL='http://twitter.com/mentalug/'">

Correct. Anyone with a keyboard and Google can pull this off.

 

[Tooth and Nail]

Sherdog 4 eva

 

[VictorCosta]

LOL what a nerd... We need sherdog back muhahahah

 

[Bronson]

What the hell happened!? My tab just had a nervous breakdown going between sherdog and twitter. Lol

 

[Mikeyz]

just saying ^^

What a goofball

 

[jukebox]

Well that was...interesting.

 

[hoonosewot88]

Shit hack, but funny. I just went into my browser options and turned off redirects.

 

[I Orange I**]

It's back and working. Just checked on the work computer.

 

[slavomir]

Imo bomb that guys twitter with something. For example pretend you found his twitter on some bestiality site and you have a nice pony for him to play with.
The only problem is that guy might be innocent and someone else redirected it to him,