👁️à̸̖̜͖͖͇̐͘͠z̸̡̧̈́̌̏̔̌̈z̴̼̥̻̰͉͙̥̟̤͂̽̈͒͊ͅy̴̗̍͐̈́̃͘̚͝👁️Dec 19, 2022

I wondered due to recently remembering when I was able to pull the PDFs off teacher's section. On the textbook manufacturer's just from fking around the URL.

This is a while ago, but I did mention to the professor but he did the idk what you talking about. (2+ years ago)

So I did email the contact email for the manufacturer. They asked for student ID, school code and classroom name. I told in response You can get the school name and thats it. But the following response was how I need to disciplinary actions against me for attempting to cheat. Thus they need the student ID. I ain't gonna get expelled for absolute dumb shit. So I didn't give it and cut off all communications.

In cases this it's now like a double sided thing. I want to report an issue so someone could fix it. But if I'm going to be punished too, why report the issue at all?

#teaching #security #IDOR #url #exploit

Show thread👁️à̸̖̜͖͖͇̐͘͠z̸̡̧̈́̌̏̔̌̈z̴̼̥̻̰͉͙̥̟̤͂̽̈͒͊ͅy̴̗̍͐̈́̃͘̚͝👁️

I did get banned from an anonymous chat app for reporting a bug b4. 😂 In this app sending urls was a paid only feature. Idk how I accidentally used the wrong brackets. I used {} instead of () thinking back on my keyboard rn. They are in the same position. But used to surround urls in () so it's easier to copy n paste.

Well using {} made the link hyperlinkable somehow. So I reported it to the devs and they just banned me. 💀Later I did email them in another time. Their reason was I was basically summed up with: I was using the app incorrectly. 🤔😫

Dec 19, 2022 at 10:19amWeb
Show threadAnsel Robateau 🇧🇿 👨🏾‍💻Dec 19, 2022
@babyfangs I feel you.