Cointime

Download App
iOS & Android

Paradigm researcher: Twitter security vulnerability now fixed

Paradigm researcher Samczsun posted on social media that the security vulnerability reported by Twitter this morning has been fixed. The technical summary is as follows:

Reflected XSS and CORS/CSP bypass in Twitter subdomains allow arbitrary requests to the Twitter API as a local authenticated user.

BlockBeats previously reported that earlier today, Chaofan Shou, co-founder of fuzzland and a doctoral student at the University of California, Berkeley, posted that a critical vulnerability had appeared in Twitter. This vulnerability allows hackers to gain full access to user accounts with just one click of a link. This means that hackers can tweet, retweet, like, block, etc., but cannot change user passwords.

X
Comments

All Comments

Recommended for you