An XSS which is protected by a CSRF token - discuss.
-
-
@avlidienbrunn@Bitquark my 2 cents - Self-XSS or any kind of XSS should be fixed. Period. But, that's a diff argument I guess. -
@anshuman_bh@Bitquark oh, definitely it should. However impact-wise I think it's fair say they're equivalent.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.