lemmy.mlaga97.space
  • Communities
  • Create Post
  • Create Community
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
Shadow@lemmy.ca to Lemmy@lemmy.mlEnglish · 1 year ago

Mlmym bug that allows for 302 redirect hijacking

github.com

external-link
message-square
2
fedilink
0
external-link

Mlmym bug that allows for 302 redirect hijacking

github.com

Shadow@lemmy.ca to Lemmy@lemmy.mlEnglish · 1 year ago
message-square
2
fedilink
/link endpoint allows redirection to any arbitrary URL · Issue #101 · rystaf/mlmym
github.com
external-link
On old.lemmy.ca we're seeing a significant number of requests from Google Bot to random sites: 66.249.72.233 - - [27/Feb/2024:21:49:30 -0800] "GET /link?url=https://moebelsachverstaendiger-ganz.de/...

Heads up for anyone running mlmym on their instance, your site is probably being used for google SEO manipulation: https://github.com/rystaf/mlmym/issues/101

alert-triangle
You must log in or register to comment.
  • Derin@lemmy.beru.co
    link
    fedilink
    English
    arrow-up
    0
    ·
    edit-2
    1 year ago

    Cheers, I just started dropping connections to /link as well, as a result.

  • Shadow@lemmy.caOP
    link
    fedilink
    English
    arrow-up
    0
    ·
    1 year ago

    This is now fixed in v0.0.40, go update!

Lemmy@lemmy.ml

lemmy@lemmy.ml

Subscribe from Remote Instance

Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !lemmy@lemmy.ml

Everything about Lemmy; bugs, gripes, praises, and advocacy.

For discussion about the lemmy.ml instance, go to !meta@lemmy.ml.

Visibility: Public
globe

This community can be federated to other instances and be posted/commented in by their users.

  • 17 users / day
  • 17 users / week
  • 181 users / month
  • 1.3K users / 6 months
  • 1 local subscriber
  • 13.2K subscribers
  • 487 Posts
  • 3.02K Comments
  • Modlog
  • mods:
  • Nutomic@lemmy.ml
  • BE: 0.19.5
  • Modlog
  • Instances
  • Docs
  • Code
  • join-lemmy.org