twitter

3 articles
sort: new top best
clear filter
bug-bounty448 google354 xss341 microsoft283 facebook246 apple171 exploit163 rce160 malware102 account-takeover95 cve91 bragging-post84 csrf83 browser77 writeup76 privilege-escalation68 react60 authentication-bypass57 cloudflare54 dos53 node52 ssrf51 docker51 phishing50 aws48 access-control47 oauth45 smart-contract45 supply-chain44 ethereum43 defi42 web342 sql-injection41 lfi37 idor35 smart-contract-vulnerability32 vulnerability-disclosure32 web-application31 burp-suite31 reverse-engineering31 clickjacking31 race-condition31 info-disclosure31 wordpress30 cloud29 input-validation29 information-disclosure29 web-security27 solidity27 cors26
0 1/10
Country Filter for X/Twitter
tool

GeoFilterX is a Chrome browser extension that adds country-of-origin indicators to X/Twitter accounts and allows users to filter or block posts from specific geographic regions to combat foreign disinformation campaigns and state-sponsored influence operations.

browser-extension geolocation social-media disinformation information-warfare content-filtering privacy twitter chrome-extension
GeoFilterX Twitter X Chrome
geofilterx.com · hgarg · 12 hours ago · details · hn
0 1/10
ScraperNode – Scraping API for LinkedIn, Instagram, TikTok, and More
tool

ScraperNode is a web scraping API platform that provides pre-built scrapers for multiple social media and job listing platforms including LinkedIn, Instagram, TikTok, and others, designed to integrate with automation workflows like n8n and custom AI applications.

web-scraping api social-media data-extraction automation linkedin instagram tiktok twitter youtube facebook
ScraperNode n8n OpenClaw LinkedIn Instagram TikTok Twitter/X YouTube Facebook Indeed Glassdoor Yelp GitHub Crunchbase
scrapernode.com · emery_p · 14 hours ago · details · hn
0 6/10
A simple CORS misconfiguration leaked private post of twitter facebook instagram
bug-bounty

A CORS misconfiguration in Twitter's niche platform allowed attackers to bypass origin validation by leveraging subdomain prefix matching (niche.co.evil.net) to steal private user data including images, emails, and CSRF tokens synced from Facebook, Instagram, and Twitter. The vulnerability was exploited via a simple JavaScript POC that exfiltrated sensitive information when visited by logged-in users.

cors-misconfiguration cors same-origin-policy cross-origin-resource-sharing horizontal-privilege-escalation sensitive-data-leakage oauth api-security subdomain-takeover-adjacent browser-security credentials-leakage twitter facebook instagram bug-bounty bragging-post
Twitter Facebook Instagram niche (Twitter product) Rohan Aggarwal HackerOne Burp Suite
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 19 hours ago · details