An XSS on Facebook via PNGs & Wonky Content Types - https://fin1te.net/articles/xss-on-facebook-via-png-content-types/ …
-
-
Replying to @blubbfiction
.
@blubbfiction@mniemietz@fin1te well, actually, the DNS part is what makes it dangerous.1 reply 0 retweets 1 like -
Replying to @kkotowicz
@kkotowicz@mniemietz@fin1te plus the document.domain relaxation.1 reply 0 retweets 0 likes -
Replying to @blubbfiction
@blubbfiction@kkotowicz@mniemietz@fin1te youtube had a similar thing 2y ago, fallback CDN under http://youtube.com1 reply 0 retweets 0 likes -
Replying to @tehjh
@blubbfiction@kkotowicz@mniemietz@fin1te CDN let you specify arbitrary Content-Type for A/V files, and cookies leaked to the subdomain1 reply 0 retweets 0 likes
@blubbfiction @kkotowicz @mniemietz @fin1te but probably a PITA to exploit because you'd need XSS via A/V encoder output
2:35 AM - 28 Jan 2016
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.