Reddit hacked
Update: Looks like the malicious code on the comments is now being replaced with “i am a terrible person”. But it is still possible to submit malformed URLs, and it remains to be seen whether the exploit is completely fixed.
Digg this story if you want to read the comments of gloating Diggers- Digg does not allow any markup(or markdown) in its comments, so there is no risk of such an exploit.
reddit, one of the most popular social news sites, has just been hacked with a pretty bad exploit. As a story making its way up reddit’s front page demonstrates, reddit’s programmers have made a major mistake in designing the site- they did not validate input in any text boxes on the site. From a security standpoint, this is a massive flaw. Read more »
