from what I've heard this list of "vulnerabilities" is inaccurate, but even if it was, wasteof would still be a billion times less bug ridden than twitter lmao
warning!
From the tests i have done, there are many vulnerabilities on this website, there are also a lot of bugs. Example: when posting something, if you spam click `post` it will create a post for every time you click the button, there should be an implementation to limit the time between posts and to make the button a one time click. (THIS BUG MAKES THE SITE LAG!). its also a pain to delete all of the posts if you accidentally do so as the site refreshes but will still lag and there is a small chance that the post will not be deleted. There is also a password vulnerability… maybe don’t have the user’s passwords get stored as a plain document.
THERE ARE VULNERABILITIES IN THE REPO!; Yes, even tho the repo is the legacy site and isn’t used anymore it is still good to state the vulnerabilities on the repo as people might use the template to make their own site like this and wont know of the vulnerabilities in the code:
List of the vulnerabilities on the repo: SQL Injection, Cross-Site Scripting (XSS), Insecure Direct Object Reference (IDOR), Lack of Input Validation, Insecure, Outdated Dependencies, Lack of Error Handling, Insecure Session Managemen, Storage of Sensitive Data(user and password information: Insecure Password Storage, Weak Password Hashing, Lack of Password Salting, Insecure Password Verification, Missing Password Complexity Requirements, insecure Password Reset Token Generation, insecure Password Storage in Sessions), Lack of Secure Communication… sry <3
crazy that 2020 is 4 years ago now, if you had told me now that it was actually us all collectively having a fever dream I'd probably believe you
omw to spend a solid 2 minutes pressing the up and down keys on my keyboard deciding the spacing between two elements in a UI design only to go and change it days later after looking at it again
I avoid talking about politics on here, I leave that to the discussion channel in ta's hangout. But since it's engulfed some of the folks I follow and it's also on my mind, I want to say something. So, this is your warning, politics ahead:
The current far-right, racist riots in the UK (mainly in England and some in Northern Ireland, luckily hasn't spread to my home of Scotland nor Wales yet) are harrowing, and shows how we've been failed by so many groups. The previous Tory government that used immigration as a fearmongering tool to stay in power, ironic now that islamophobes are yelling "stop the boats" while attacking Mosques. Or Nigel Farage who eagerly stoked the flames but then denies all accountability for holding the match by using a tragedy for his own political gain, plus all the other far-right losers like Andrew Tate or Tommy Robinson who is continuing to encourage violence while he sunbathes in Cyprus. Or the gutter press like The Daily Mail, The Daily Express, The Sun, or all the other news orgs who were too scared to call out their peers’ rhetoric that lead us here. Social media also has to answer for allowing misinfo to spread.
To those still suffering from the riots, please stay safe, this is a dark time for the UK, but tonight has given me hope, massive crowds of counter protesters in cities like London have scared off the far-right thugs, in Brighton there are thousands of anti-racist & anti-fascist protesters to 3-4 of the far-right. There is hope.
having a lot of fun making logos for the various departments and whatnot for the @president account. Basing them off of real logos from the IRL US departments, which is certainly an experience when I have not seen some of these logos before since I live in Scotland lol. hope you all are enjoying the account so far 🩷
My fellow wasteof users, we did it. Thank you for voting for insanity! I am very humbled to be your president-elect. I will work tirelessly to ensure silliness prevails. Thank you to everyone who voted for me and also spread the word to help our grassroots campaign make such a shockwave. Well done to my opponents too, your campaigns were great and I admire your work to win this election. To those who didn’t vote for me, I will work twice as hard to ensure I can convince you all that I am the right person for the job. Thank you to my vice president-elect @perrin for being my running mate, he will work just as hard for the people as I will.
Want to get real for just a moment, this has been really fun and shows to best of wasteof imo, a simple joke about me replacing Joe Biden spiralled into a joke presidential campaign where tons of you guys got really creative with your own campaigns or supporting others campaigns was really awesome to see, honestly didn’t expect to win, I always see myself as a bit of an outsider here since I don’t really code and whatnot, but clearly I was mistaken lol. All of this stuff also just pushed me to 100 followers on this account too! This is my second account to do so (first being da-ta), thank you very much!
I’ll reveal my government and cabinet picks once I get the @president account off of @oren who made it for safekeeping. For now, thank you for everything! Back to normal service!
UPDATE I have the @president account now! Formerly Auri24.
If you follow my main @da-ta you may have just saw that I mentioned that my da-ta Scratch account turns 9 years old today. On the 30th July 2015 I made da-ta on Scratch, that was the first time I ever used that username ever, I came up with it randomly because I thought it sounded cool. Who knew I’d still be using it and going by it almost 10 years later? da-ta was my first Scratch account, I had used Scratch 1.4 since around 2011 in school until I learnt there was a online community, so I uploaded my first project, a remake of The Sims 4 (which sucks) that I had to retro fit into Scratch 2.0 from 1.4. It’s now got like 70K views (idk why, was not featured or anything lol). For years I swung back and forth between bad games, animations, music, and then eventually I started making bad designs, I stuck with that until 9 years later I am mildly better at design, made more accounts like da-ta2 and Auriali (that’s me!) along the way, made a Discord with now almost 200 people, now do a podcast with 2 other awesome designers who started on Scratch, and a whole lot more. If you told 2015 this is what would’ve happened (and that I’d make an account where I joke about being a girl who is more powerful than the universe itself for no reason) then I wouldn’t have believed you, but here I am. Thank you for all the support, whether it’s on Scratch, on my Discord ta’s hangout, or here on wasteof, I appreciate it!
P.S. Vote for insanity, vote for Auri!
Hey guys, to begin our work of bringing my manifesto to life, we have the first prototype of a Arch Linux user badge, which is our 6th point in the manifesto; “Arch Linux users to get free badge to indicate they are Arch Linux users“ - let me know what you think!
Hello fellow wasteof users, I have 2 massive campaign announcements to make today. Please read:
I have picked my running mate for this election, that being the wonderful @Perrin. I believe he will be a strong VP for my administration if I am elected. I will appoint other members of my government after the election if I do become elected.
I have released my manifesto, it is a 25 point list of things I plan to do if I become President, I have other ideas that I plan to do, and I am happy to continue to work on my policies all the way up to the election.
Follow @Auri24 for more news from the campaign and remember, vote for insanity, vote for Auri!
