Home Security #X.com

Tagged #X.com

1 post

The Twitter Open Redirect Nobody Patched

We hunted 80 trusted-domain endpoints for unauthenticated open redirects. One is still live in 2026 (twitter.com/logout?redirect_after_logout=) and works …

Research / Writeup 7 min