Bugs

Description: An unauthorized access vulnerability has been identified in the Only1.app platform that allows users to view protected images without payment by exploiting the direct media link. Steps to Reproduce: Navigate to any protected post on Only1.app , e.g., https://only1.app/posts/9b3157c0-4a59-11ee-8a01-33c347d8c3bc Identify the etagId of the media content. Append the etagId to the base URL https://s.only1.app/ . For instance, using the etagId dba3ce5d8bab055090cf271c4acb2e44, the resulting link would be https://s.only1.app/dba3ce5d8bab055090cf271c4acb2e44 Access the generated link to view the protected image without any restrictions.

When user A follows user B, user B gets a notification that user A has subscribed. User A can unfollow again and repeat the steps, in this case User b gets his notifaction tap spammed with user A is following Same issue can appear with liking a post and repeating the steps above. Solution: If user likes/follows and remove like/follow, remove it from the notification too

Small Glitch on image gallery. When I switch between the images on my phone more than once, the page gets scrolled a bit (see clip, youtube shorts) https://www.youtube.com/shorts/X9C6gBHYglw

If I post on Only1 with several emojis, the post is posted without the emojis

Videoplayer on mobile does not play, I only see one frozen frame but I hear the sound so the video is actually played (mobile) Videoplayer on desktop If I click on the video, The video thread gets open up and the video is played twice simultaneously If I open a up a picture thread by clicking on the picture, I can't see the the thread or comments (there is a slight window glitch visible on the right side) (on mobile) If I open up a picture thread by clicking on the picture, it opens up on desktop but I can't comment using the right comment textbox. I click on it but I can't edit the field (desktop)

Sometimes I get kicked out of my account when I switch between the menu points (like from Home to Profile), but it happens more often when I click on "Start earning" I still can see the posts on the following tab (of users I have followed) without even being logged in anymore. Then sometimes the Sign In button is missing so i need to refresh the website to see it again so I can re-log.

you can scroll down on your text if its larger but apparently the slider cuts out text if you scroll up or down (see picture)

Mobile Bug - When opening a post thread and clicking on the comment textbox to post, my phone zooms in a bit. And when I hit the send button, the comment gets posted, but the textbox still includes the text and does not get cleared.

Firefox desktop - Clicking on video does not open the comment section on the right side like on Google Chrome Open up this post on desktop firefox and click on the video you see the pop up comment section on the right does not pop up like it does on google chrome desktop https://only1.app/posts/ae2a3882-1e8b-11ee-871a-1f6f2929b9a5

Line spacing has become too large for Mobile. It's still good at desktop tho but also has enlarged a bit. (picture is mobile)