CLOUDFUCKED

Cloudflare's reverse proxies have an HTML parser bug that results in random data being sprayed all over the pages they host.

bugs.chromium.org/p/project-zero/issues/detail?id=1139

TL,DR: Any passwords you have EVER sent to a Cloudflare-hosted site might show up in some other random page somewhere on the internet.

NOTE: Sup Forums USES CLOUDFLARE.

Other urls found in this thread:

blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/
github.com/pirate/sites-using-cloudflare
twitter.com/AnonBabble

Is this why old images were wiped from Sup Forums recently?

It's good I don't login here

Ironically, your data is safe if the only sites you use are Google, Facebook, Amazon, etc which have their own CDNs.

Realistically, what percentage of the human population uses at least one service "protected" by CloudFlare? I'd think it'd be safe to say at least 50%.

ha

...

...

Uber uses Cloudflare servers behind the scenes, even if you access it through the app. Lots of companies do this.

1Password also uses Cloudflare.

Based tavis

OK? Neither of those are companies I mentioned, nor anywhere near their size.