I submitted this bug report and didn’t receive a bounty. You told me that this bug has existed for a year. Seeing that you haven’t fixed it for so long, it seems that this bug is not important, so I made it public. pic.twitter.com/R9X4k8KqMZ
— rabbit (@rabbit_2333) December 12, 2023
😝 Here is the full disclosure of the Twitter XSS + CSRF vulnerability.
Clicking a crafted link or going to some crafted web pages would allow attackers to take over your account (posting, liking, updating your profile, deleting your account, etc.) pic.twitter.com/MVJ1MvHt6H
— Chaofan Shou (@shoucccc) December 13, 2023
If you’re using Twitter on your phone in your browser, you’re vulnerable because you can’t install extensions, so just log out and use the app instead (or if you’re an app purist, just live without Twitter for a few days)
— samczsun (@samczsun) December 13, 2023
I submitted this bug report and didn’t receive a bounty. You told me that this bug has existed for a year. Seeing that you haven’t fixed it for so long, it seems that this bug is not important, so I made it public. pic.twitter.com/R9X4k8KqMZ
— rabbit (@rabbit_2333) December 12, 2023
Stay on top of crypto news, get daily updates in your inbox.
- SEO Powered Content & PR Distribution. Get Amplified Today.
- PlatoData.Network Vertical Generative Ai. Empower Yourself. Access Here.
- PlatoAiStream. Web3 Intelligence. Knowledge Amplified. Access Here.
- PlatoESG. Carbon, CleanTech, Energy, Environment, Solar, Waste Management. Access Here.
- PlatoHealth. Biotech and Clinical Trials Intelligence. Access Here.
- Source: https://decrypt.co/209707/twitter-user-finds-critical-bug-that-could-have-wrecked-your-x-account-and-gets-banned-for-it