joshatticus — 2/15/2024, 2:51:52 AM

Just in time cause guess what? I have PROOF that Balze messages are NOT encrypted like kyle claims. I mean, I got someone else’s messages by changing my token cookie to yippee. Anyone want their messages back?

↩ repost
blaze — 2/12/2024, 2:40:42 AM

25 likes and our next feature will be one of our best features yet! This could be open sourced since we won’t be using Wix for our next project.

♥ 37 ↩ 7 💬 26 comments
♥ 7 ↩ 0 💬 5 comments

comments

oren:

I got someone else’s messages by changing my token cookie to yippee

Oh nah, even wix should have this amount of security

2/15/2024, 1:41:00 PM
scentedpolygon:

blaze is a dumpster fire and this is yet more proof of it

2/15/2024, 12:38:54 PM
bloctans:

part of its token is literally using json

2/15/2024, 4:16:47 AM
radi8:

the tokens use jwt (json web tokens)

2/15/2024, 12:14:30 PM
theycallhermax:

[…] Managing it, however, is pretty difficult. […]

hmm thats interesting have you ever considered the fact that maybe its because its using wix?

2/15/2024, 3:06:13 AM