NOTE: The following contains instructions that may violate the mintshot TOS, anything you do is your own fault.
This is being posted so that the public can see how badly written mintshot is, which will hopefully kick the developers into fixing it so that those people who enjoy watching ads can get paid for it (I’m not one of them).
Mintshot is a poorly coded, insecure and easy to cheat website.
The level of security shown on the site makes me worry for the future of web development.
The security problems detailed in this post, allow users to gain more m$ (the currency on the website) than they should be able to, thereby giving them an unfair advantage over the people who use the site legitimately.
Layman’s version: People can cheat on mintshot and get more money than you. This will let them win every auction and get all the prizes!
[Edit 4th Dec] Don’t send me stupid mail asking me how to hack, or I’ll post it on here like this:
From CS / Dec 3, 2007 2:25 AM
like the blog!! wanna teach me how to do this? i need new cloths too! and am not good enough to win! lol
hook a homie uP!
From CS / Dec 3, 2007 10:37 PM
hey man i know your probably going to shoot me down here!
but is there anyway you could show me how to write that bookmarklet thing! i just completed my first semester at uni and i know how to write in C.. but am yet to get into java script! any help would be nice! i know how to alter the info with a program in firefox but it takes heaps of time! so any help would be great! i dont want to rip the site off! i just wanna have a chance to win some SKINS!!!! lol please help it would be greatly appreciated! and i definatly wouldnt go crazy with it!
I should of just continued ignoring him at this point, oh well….
From Danzel / Dec 4, 2007 8:24 AM
From CS / Dec 4, 2007 10:32 AM
hahahaha jesus! whats your problem? you left your e-mail on the site like you wanted to be contacted! jesus!
From CS / Dec 4, 2007 4:11 PM
common man help me out! dmanit! lol
From CS / Dec 4, 2007 6:51 PM
hey homo! looks like they have patched the exploit anyway! FUCK! all cause dick heads like you took it to far! if people had of been civil about it it woulda been sweet!
Yes, dick heads like me who informed them of the security hole.
I’m certainly a huge dickhead!