30Gigs.com is an invitation-only email service which offers a whopping 30 Gigabytes of storage for your email. 30gigs.com是一个只有获得邀请才能使用的电子邮件服务,提供了高达30 GB的储存空间,为您的电子邮件。 As a reference GMail currently offers around 2.5 GB storage.作为一个参考Gmail目前提供约2.5 GB的储存空间。 Unfortunately they poorly implemented the registration interface which can be trivially compromised as shown below.可惜他们不善的实行注册介面,可trivially妥协,如下所示。

Here is a proof-of-concept form which allows you to get a 30Gig email account without an invitation, thanks to Retard from这里是一个概念证明型形式,它可以让您得到30gig的电子邮件帐户,没有邀请函,感谢延缓 Cyber-Crimes网络犯罪 via通过 Ch0de ch0de .

First Name:第一名称:
Last Name:姓氏:
Desired Email Address:理想的电子邮件地址: @30gigs.com @ 30gigs.com
Choose a Password:选择一个密码:
Re-enter Password:重新输入密码:
Secondary Email (required):次要电子邮件(必填) : Note: You may want to use注意:您可能要使用 disposable email addresses用完即弃的电子邮件地址 for safety.为安全。
Country:国家:

Note: The data you provide above is directly transmitted to 30gigs.com website.注:您所提供的数据,以上是直接转发给30gigs.com网站。 Your data doesn’t pass through our servers.您的数据不经过我们的服务器上。

A trivial fix requires a single line of code.微不足道的修复程序需要一个单一的代码行。 A simple check for referrer should do the trick.一个简单的检查引荐应该做的把戏。 So don’t be surprised if the form above suddenly fails to work.所以不要奇怪,如果上述形式突然不能工作。 It is simply a proof-of-concept.它只是一个概念证明型。

I am very curious to see how soon they plug this hole as a measure of their responsiveness.我很好奇,看看他们如何尽快堵塞这个漏洞,作为衡量他们的反应。