| Thank you. I didn’t even think of something as simple as cookie stealing. Here’s what he wrote to me (and his talk of manners would be fair if it were justified - he went on the attack as soon as I said there was XSS in his plugin). - “ok Thank for the advice i will try to follow it. well there is noting about haking your site with some text well that is a joke i will suggest you to change your university and most importantly learn some manners for talking with unknowns, seniors and any one in this world Education doesn't teach us to earn from it.
it teaches us how to behave and live a life without hurting anyone. I'm a developer and having years of experience but you are a student and it's your learning stage, not for coding or anything like it but most importantly manners coming back to your words. no one in this world can hack your site through the order notes nor any one wants
today you are saying me joke of coding without knowing anything tomorrow you will be the joker of coding even the joker of computer science i have developed you what you wanted and at that time you were agreed on it and now after month you learn something new and come back to me to misbehave with me and i think after 10 years you will again come and say to me somethink new that will be more interesting ” |
This should have been a great learning opportunity, instead he took it as a personal attack.
I'm doubting his claim of 10 years experience. Someone with that much experience writing any sort of web code should know what a cross-site scripting vulnerability is, what can be done with it, and how to make sure it doesn't happen.
I've never used Fiverr before, but does it allow you to rate them? I'd drop a 1-star and comment that he reacted aggressively when you told him about a security vulnerability found in his code.