Mikael Thalen

Mikael Thalen

25-07-2022

15:07

The site that was leaking user data, known as 'Unjected,' is similar in design to Twitter but is often referred to as the “Tinder for anti-vaxxers.” Users can advertise their 'mRNA FREE' blood, sperm, or eggs to one another.

Security researcher @GeopJr1312 discovered that Unjected's web application framework had been left in debug mode. From there they were able to find the private email addresses for the site's roughly 3,500 members.

The admin panel for Unjected was also openly exposed, allowing anyone to add, edit, or deactivate pages & users accounts & view flagged posts. I created a test account & @GeopJr1312 was able to change my profile pic, edit my posts, & change my username.

After the Daily Dot contacted Unjected about the issues, the site's co-founder said the problems would be fixed. But the problems only became worse. The site went offline multiple times over the weekend & one user claimed their home address was exposed.



Follow us on Twitter

to be informed of the latest developments and updates!


You can easily use to @tivitikothread bot for create more readable thread!
Donate 💲

You can keep this app free of charge by supporting 😊

for server charges...