By Staff Site Issues and Feedback

[ForgottenSeer 123960]

@Mr.X

I ran it through Gemini to defang it and I targeted the specific HTML elements that trigger Cross-Site Scripting (XSS) filters, while keeping the overall structure intact for the analysts reviewing your post.

Most forum Web Application Firewalls (WAFs) rely on strict regular expressions (regex) to catch executable code. They are looking specifically for the exact string & script to block malicious payloads.

By prepending x- (which is a standard web convention for custom or non-standard tags/MIME types), I completely broke the WAF's regex signature. The firewall scanned the text, saw custom tags instead of executable ones, and let it through. Meanwhile, XenForo's syntax highlighter still recognized the structure, applying the correct color-coding so it reads perfectly.

Spoiler: Your post

<div id="iframedazn"><div class="AV698648d5527b2c4dd1051178" style="width: 100%; margin: 0px auto; max-width: 640px;"><div id="aniBox" style="width: 100%;">

<div id="aniplayer_AV698648d5527b2c4dd1051178-1774400666684" style="width: 100%;"></div></div></div><x-script async="" id="AV698648d5527b2c4dd1051178"

type="text/x-javascript" src="hxxps://tg1[.]stoic-media[.]com/api/adserver/spt?AV_TAGID=698648d5527b2c4dd1051178&amp;AV_PUBLISHERID=6986481f79a586c8500319c4">

</x-script></div>

<div id="iframedazn"><div class="AV698648d5527b2c4dd1051178" style="width: 100%; margin: 0px auto; max-width: 640px;"><div id="aniBox" style="width: 100%;">

<div id="aniplayer_AV698648d5527b2c4dd1051178-1774400669385" style="width: 100%;"></div></div></div><x-script async="" id="AV698648d5527b2c4dd1051178"

type="text/x-javascript" src="hxxps://tg1[.]stoic-media[.]com/api/adserver/spt?AV_TAGID=698648d5527b2c4dd1051178&amp;AV_PUBLISHERID=6986481f79a586c8500319c4">

</x-script></div>

 

[LinuxFan58]

Could you add an AI generated content filter which delays visibility of posts (for one hour) when they have a high AI generated content rating.

Example, just delay the visibility for 1 hour and when the poster keeps posting AI generated content WITHOUT explicitely mentioning it is AI generated content, increase the visibility delay by 1 hour for every AI generated reply.

Open discussion and user generated content are part of the charm of this forum.

 

[Sampei.Nihira]

 

[Jack]

View attachment 297346

My fault, i did some changes and broke the encryption. It should be ok now, let me know if you have issues again. Sorry

 

[Sampei.Nihira]

My fault, i did some changes and broke the encryption. It should be ok now, let me know if you have issues again. Sorry

Could these changes have caused a brief graphical glitch after the website resumed normal operation?
Does the webpage briefly go white while rendering?

 

[Victor M]

Cannot edit thread. Have we gone back to the old way of not letting post owners to edit their posts after 1 day ?

 

[Jack]

Cannot edit thread. Have we gone back to the old way of not letting post owners to edit their posts after 1 day ?

Hey Victor,
We haven't changed anything in years when it comes to permisions... you should be able to edit the thread title & post for 24 hours after you have posted it.

Could these changes have caused a brief graphical glitch after the website resumed normal operation?
Does the webpage briefly go white while rendering?

Are you still experiencing issues? You should not see any errors or slowdows, if yes, try to clean your browser cache.

 

[Sampei.Nihira]

Hey Victor,
We haven't changed anything in years when it comes to permisions... you should be able to edit the thread title & post for 24 hours after you have posted it.

Are you still experiencing issues? You should not see any errors or slowdows, if yes, try to clean your browser cache.

No, thank you very much for your concern.

 

[HarborFront]

Hi

I'm having some display issues. Using Ungoogled Chromium and Brave browsers for Windows are showing the same issues. I just installed Brave browser. I just signed out from UG and then signed in again. Before that no such issue on UG browser.

1st - Missing alerts on the top right hand corner
2nd - Missing Yes/No/Don't ask me again (something like that) for the below 'Enable Push Notifications'

 

[HarborFront]

Ok found the problem to UG and Brave browsers

If I set flag to enable 'Auto Dark Mode for Web Content' the issue appears. This flag sets all pages in dark mode. However, if I set to default then no issue here but other webpages are NOT in dark mode. That means I need Dark Reader extension to handle dark mode in web content for websites

 

[SeriousHoax]

Ok found the problem to UG and Brave browsers

If I set flag to enable 'Auto Dark Mode for Web Content' the issue appears. This flag sets all pages in dark mode. However, if I set to default then no issue here but other webpages are NOT in dark mode. That means I need Dark Reader extension to handle dark mode in web content for websites

View attachment 297461

View attachment 297460

Everything is present in the dark mode but not easily visible. I use the dark mode flag also and got used to some of the barely visible icons.

 

[HarborFront]

Everything is present in the dark mode but not easily visible. I use the dark mode flag also and got used to some of the barely visible icons.

Facing the same issue with Brave for Android. Worst is Brave don't support extension. If I enable Night Mode or the flag then I get all pages in dark mode but the alerts missing in MWT forums. If I disable Night Mode or the flag then MWT alerts goes to visually normal but my other websites turn white. See below for Brave

Actually I can see the faint outline of each alert in Brave

Vivaldi for Android don't have this issue even without enabling the flag or set to Dark website

 

[lokamoka820]

Facing the same issue with Brave for Android. Worst is Brave don't support extension. If I enable Night Mode or the flag then I get all pages in dark mode but the alerts missing in MWT forums. If I disable Night Mode or the flag then MWT alerts goes to visually normal but my other websites turn white. See below for Brave

Actually I can see the faint outline of each alert in Brave

Vivaldi for Android don't have this issue even without enabling the flag or set to Dark website

Try the new "MalwareTips Dark Geometric" theme; it seems more comprehensive to me and is, I believe, the flagship theme right now. Get updates first.

 

[Marko :)]

Default dark is the best one.

 

[Parkinsond]

Default dark is the best one.

With dark webpage flag applied

default light


default dark


geometric dark

 

[Marko :)]

With dark webpage flag applied

default light
View attachment 297469

default dark
View attachment 297470

geometric dark
View attachment 297471

This isn't MT issue, that's on your dark page flag because it doesn't work correctly. If you're using Brave, it's still experimental.

 

[Parkinsond]

This isn't MT issue, that's on your dark page flag because it doesn't work correctly. If you're using Brave, it's still experimental.

They look so on all the browsers; Edge and Chrome.
In addition, when using Reddit with the flag, everything looks the right way.

 

[Marko :)]

They look so on all the browsers; Edge and Chrome.
In addition, when using Reddit with the flag, everything looks the right way.

Reddit is one of the most visited websites so obviously it's higher priority than MT in Chromium dev's eyes.

 

[Sorrento]

Looks fine here

 

[HarborFront]

This isn't MT issue, that's on your dark page flag because it doesn't work correctly. If you're using Brave, it's still experimental.

You can set the flag for dark mode or use the 'Experimental' night mode setting. Works the same for both