CVE-2020-0601pic.twitter.com/8tJsJqvnHj
U tweetove putem weba ili aplikacija drugih proizvođača možete dodati podatke o lokaciji, kao što su grad ili točna lokacija. Povijest lokacija tweetova uvijek možete izbrisati. Saznajte više
thanks to @CiPHPerCoder's hint :)
the biggest constraints are Chrome's tight certificate policies and that the root CA must be cached, which you can trigger by visiting a legitimate site that uses the certificatepic.twitter.com/GgftwVvpY8
is there any reason not to drop my PoC on GitHub, since there have been two PoCs released already?
since there have been two dropped already, here's my PoC for CVE-2020-0601:https://github.com/saleemrashid/badecparams …
Chrome 79.0.3945.130 released with a patch for this CVEhttps://chromereleases.googleblog.com/2020/01/stable-channel-update-for-desktop_16.html …
Thus is because they're going out of their way to support MITM malware instead of protecting the user.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.