this post was submitted on 17 Apr 2025
78 points (96.4% liked)
Videos
15671 readers
231 users here now
For sharing interesting videos from around the Web!
Rules
- Videos only
- Follow the global Mastodon.World rules and the Lemmy.World TOS while posting and commenting.
- Don't be a jerk
- No advertising
- No political videos, post those to !politicalvideos@lemmy.world instead.
- Avoid clickbait titles. (Tip: Use dearrow)
- Link directly to the video source and not for example an embedded video in an article or tracked sharing link.
- Duplicate posts may be removed
Note: bans may apply to both !videos@lemmy.world and !politicalvideos@lemmy.world
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I wonder - does this put the other chans and kuns at the same risk of hacking or do they use different code?
The source code leaked is all custom code that hasn't been updated since 2015 and uses functions that have been removed from PHP for being insecure since 2019. The hack supposedly took advantage of PDF uploads not being scanned for embeded code. 4chan uses a program called ghostscript to create thumbnails of uploaded PDFs but the version they use is from 2012 and the hackers likely used a known exploit to get it to run embeded PDF code.
So unless the other websites are also running software from a decade ago, they're probably good.
Ah interesting. Yeah I wasn't sure since they all sorta look the same and wondered if they were forks of each other or something.