@intigriti Pay special attention to the GET url param of “cmd”. So a payload of alert(document.domain) in the cmd query string will get eval’ed. so “?cmd=alert(document.domain)”
@DanPatterson@stephengandel@CBSMoneyWatch Fuck this guy. In his live interview he suggests that posts on Reddit that say to hold are bots trying to influence investors. He is tryin to make us believe that bots want us to hold. Anyone who knows WSB knows that’s BS.
@stephengandel you’re such a fuck. What you just said in your interview in CBSN does not align with your written article. In your live interview you said the types of posts bots were posting were telling people to hold. You’re trying to imply that the msg to hold is bot related.
@wsbmod look at what these fucks are saying. No one on WSB has claimed victory. And I’m pretty sure @michaeljburry didn’t say what WSB was doing is illegal. https://t.co/VtQiJAZLDG
@dnsprincess https://t.co/YeJegAEOgs prob one of the best resources for teaching and demonstrating XSS. And it helps teach people all the different types. Great for learning the lingo and testing your skills.