|
Hello sir,
Im an individual security searcher i have found an XSS Vulnerability at your Website, please Contact me at my Email for Further explanation Thanks
|
|
|
|
|
Here[^] you could find webmaster mail id. Send details.
thatrajaCode converters | Education Needed
No thanks, I am all stocked up. - Luc Pattyn
When you're wrestling a gorilla, you don't stop when you're tired, you stop when the gorilla is - Henry Minute
|
|
|
|
|
|
Hey Paul - I've not heard from you.
|
|
|
|
|
|
...I assume that is what is happening.
Have a look here: http://www.codeproject.com/Messages/4768170/Spammer-in-the-database-forum.aspx[^]
We get a spammer, we squash him.
He re-registers, presumably under a new name but with the old email, and he has all the old rep points.
Some of these guys are getting high reps in some categories, which is wrong: when you register you should start with no points. If this continues, soon spammers are going to get access to the moderation queue and be able to approve each others "articles" which will make them a lot, lot harder to spot.
I'm pretty sure it's the email - if you look at this guy: http://www.codeproject.com/script/Membership/View.aspx?mid=10629187[^] who I know has been banned a couple of times this month, and his account shows he started on 27th Feb this year, but his points history goes back to November last year.
I'm not saying "take his points away" - just if you want the points from a closed account, you need to apply here to get it reinstated: it shouldn't be automatic on a new member with the same email. I'm not sure the same email should be allowed immediately anyway!
Those who fail to learn history are doomed to repeat it. --- George Santayana (December 16, 1863 – September 26, 1952)
Those who fail to clear history are doomed to explain it. --- OriginalGriff (February 24, 1959 – ∞)
|
|
|
|
|
I'm not sure if it is the E-mail. I could be the username as well (if the account gets banned you can use the same username again).
Another suggestion: If you let them keep their points: Don't add additional points for signing up again ... (or remove those rep points when the account gets banned)
I remeber that contracting clown last year that got like 5'000 participant rep just by signing up and getting banned
|
|
|
|
|
It is the same e-mail. But I think it is a good thing. For example I got wrongly banned for getting 4 reports on this post[^]. Thankfully it was no big deal as I didn't have to create a new e-mail account as my old one was still registered and whatsmore I got my account back. There have been others that have got wrongly banned too and what with the amount of people reporting anything nowadays it is good to make it nice and easy to get your account back.
|
|
|
|
|
I don't! If you are incorrectly banned, then ask here and Chris and Co will reinstate it, after looking at what happened. And easy way just encourages people to post whatever they want, and sign straight back up again when the account dies.
At least if Chris looks at the circumstances, he can politely remind people not to abuse the system!
Those who fail to learn history are doomed to repeat it. --- George Santayana (December 16, 1863 – September 26, 1952)
Those who fail to clear history are doomed to explain it. --- OriginalGriff (February 24, 1959 – ∞)
|
|
|
|
|
But the abuse of the report button is so prevalent now. Looking at my history I have had 6 reports since being re-instated.
OriginalGriff wrote: At least if Chris looks at the circumstances
Do you know if he wants to spend time doing this?
|
|
|
|
|
And backing up my point, just got banned (again) for posting this[^].
Do we really need to keep coming back here asking to be re-instated?
A real bug though is each time you re-instate you get the e-mail opt-in points again. Which teaches the people who abuse the report button, because when they ban me I get 300 points for the privilege.
|
|
|
|
|
|
It took me a while to see the second number you have circled at the top right corener (perhaps you should have explained the problem). That happens because the information for the tooltip is not updated right away. I have seen it reported here before and I personally don't think it is a real problem, but maybe other people agree with you.
Soren Madsen
"When you don't know what you're doing it's best to do it quickly" - Jase #DuckDynasty
|
|
|
|
|
sir, you are right but sir, bug is a bug after all.
|
|
|
|
|
yes, sir not a big problem but sir, a bug is a bug after all
|
|
|
|
|
|
Hello i am jatin khimani
I got this mail from info@codeproject.com
Hi JatinKhimani,
Your account at CodeProject has been reported as The member is being abusive or is a troll 5 times and is now deactivated.
First i uploaded article but that was rejected then got above mail.
i need to recover my old account(Name is Jatinkhimani) because i uploaded my Tips/Trick which was successfully published that was completed by me.
Tip/Trick Links
1=Nested Repeater Editing Asp.net c#
2=Repeater Paging With last and First Page Button[^]
and other two are published...
and if that will not recovered than can i upload that old article
in this account again ??
please please help me
Thanking you !!
Jatin khimani
|
|
|
|
|
After editing my article a few times, its official URL has a series of "-2"s appended. What's that about?
http://www.codeproject.com/Articles/664785/A-New-Parser-Generator-for-Csharp-2-2-2-2
|
|
|
|
|
All fixed - sorry about that!
|
|
|
|
|
In forums, already we have 2 flag options - Abusive & Spam. I think it's time for 3rd flag option - Bury.
Since the downvoting was removed, few members use Abusive flag(as they don't have alternative option) to kill messages though some messages are not abusive. So using Bury option we could avoid this. After 5 Bury reports, collapse* the message content(instead of removing the message content) & change the message title to Message Automatically buried.
* Like collapsed Code-block
thatrajaCode converters | Education Needed
No thanks, I am all stocked up. - Luc Pattyn
When you're wrestling a gorilla, you don't stop when you're tired, you stop when the gorilla is - Henry Minute
|
|
|
|
|
Is there, or is there any chance of having, an RSS feed for the daily news? I'm trying to migrate away from email for that sort of thing wherever possible, so thought I'd ask.
|
|
|
|
|
Well, you can get the Insider News here[^].
|
|
|
|
|
He is always able to bypass the validation checks. Do something Bob.
3 Krunal Rohit 387
4 Krunal Rohit 387
|
|
|
|
|
Again, again and again to the end of the World.
I found out the reason of His 'double reputation'. His account was removed and He had created another account. The reputation points were back to Him but from that time the 'double reputation' bug is still not resolved.
|
|
|
|
|
Oh !!! Okay. Thanks for the information Maciej.
Chris was saying that it would get fixed by today or tomorrow. Let's hope it goes ASAP.
|
|
|
|