IMAGE HACK

Some board images can be loaded from sys.8kun.top. The toy javascript below rewrites all anchors from media.8kun.top to sys.8kun.top, and adds a cache-busting random integer to all img sources as proof of concept.

It appears that .jpg files can still be served from sys.8kun.top. Not sure why… though I seem to remember CM talking about some cache service before the move to 8kun. Best guess is that sys.8kun.top is fetching the images from that in-memory cache.

Try it yourself:

https://media.8kun.top/file_store/4d4f3b67da7edeffaaf58f7faff873b4d76bc134716d3e69dfd74c58d1f52cfd.jpg?n=1440585174

-vs-

https://sys.8kun.top/file_store/4d4f3b67da7edeffaaf58f7faff873b4d76bc134716d3e69dfd74c58d1f52cfd.jpg?n=1440585174

function RewriteMediaUrls(){ var links = Array.from(document.querySelectorAll('a')) var imageLinks = links.filter(l =/.media.8kun.top./ig.test(l.href)) imageLinks.forEach(link => { var n = Math.floor(Math.random() * 77777777777) + 1 var href = ${link.href.replace("media.","sys.")}?n=${n} var imgs = link.querySelectorAll('img') imgs.forEach(i => i.src = href) link.href = href })}RewriteMediaUrls()var rewriteInterval = setInterval(RewriteMediaUrls, 5000)

>>14507477

>>Ooops. Your hack does not work with thumbnails.

Good catch. There's other broken cases as well, such as embedded mp4 player url. Perhaps another anon can polish the poc into something more robust.

>>14507469

>.jpg immune to trackers?

FMU no image format is immune because it's the program viewing the image which is ultimately exploited. The image file must be parsed to be displayed and rendered. So by virture of viewing the image the image viewer can be exploited.