Link-shortener bypass (regression on fix for #1032610)

Disclosed: 2022-12-12 17:39:00 By jub0bs To x

Medium

Vulnerability Details

Report #1032610, entitled > Chained open redirects and use of Ideographic Full Stop defeat Twitter's approach to blocking links was [closed as _Resolved _ about six months ago](https://hackerone.com/reports/1032610#activity-12095285). However, a regression on the fix for the vulnerability in question seems to have occurred, and the bug is reproducible with the exact same payload. ## Impact Refer to [#1032610](https://hackerone.com/reports/1032610#user-content-impact).

Actions

View on HackerOne

Report Stats

Report ID: 1421345
State: Closed
Substate: resolved
Upvotes: 20

Link-shortener bypass (regression on fix for #1032610)

Vulnerability Details

Actions

Report Stats

Share this report