When I entered a profile from then the alert came instantly. There is a security vulnerability I am going to let Njaguar know about. I have proof that it wasn't any other website. The malicious phishing link it was trying to connect me too also had relevant information based on the topics I was discussing. This was a troll attempt using phishing. Either Njag or d2jsp mods know and haven't done anything about it or they just don't know or they know and are the ones actually abusing it.

I have a screenshot showing that the phishing website used to troll me was relevant to the information I was posting in general chat before this happened.

This phishing attempt happened with no other apps/programs open or websites tabs or social media platforms. I was only on d2jsp and it happened right when I clicked that person's profile.

I am here to report this security vulnerability.

Thank you for help making d2jsp a better place for everyone!



This post was edited by DCEVO on Nov 29 2023 09:22pm

Just speculating, but is it coming from content embedded on their profile? I am not able to replicate your experience on mobile.

This post was edited by swiftsword on Nov 29 2023 09:12pm

"or they just don't know or they know and are the ones actually abusing it."

imagine thinking kevin or njag would willingly allow that to happen. really disgusting thing to say.

but seeing your recent reply to him in his thread, you just want attention

This post was edited by ChocolateCoveredGummyBears on Nov 29 2023 09:15pm

It couldn't be. I have not clicked anything embedded in their profile. I only clicked on the profile itself. So something is triggering my antivirus alert from the profile.

Look, I'm not here to start arguments. I am not here to personally attack. These are just observations, I am not accusing, only providing relative information based on possibilities. If you want to flame, do it elsewhere, I'm here to protect people and upgrade the website's vulnerabilities.

can we see your screenshot?

should post proof when you accuse someone of things like this.

Who am I accusing again? I don't remember accusing anyone. Sure I'll post screenshot. I am just stating possibilities about this security vulnerability. Crazy how things get twisted to personally attack someone trying to help. Is there something you want to cover up?

As you can see from previous posts after posting some controversial content, I was being attacked with a phishing attempt at one of the posters replies to my threads. I hope this security vulnerability in the website is patched fast, because people gaining access to other ip addresses through the website using phishing attempts might actually be illegal. Thank you for helping make d2jsp a better place.

SCREENSHOT POSTED!

This post was edited by DCEVO on Nov 29 2023 09:24pm

if you have any security concerns, msg Kevin.
https://forums.d2jsp.org/user.php?i=215860

if it's a legit concern, it can only become more concerning being discussed here.

you made an assumption that the site admins were roguely infiltrating their own users with embedded phishing attacks on random profiles

No I did not make that assumption. I was stating possibilities, I never gave any of them credit, only that they were possible. I did not accuse anyone. Nice try.