FIXED: XSS into Tweets! Tweetroll!


I DID NOT CREATE THIS NOR EXPLOIT IT (well, apart from sending you all to this page).
Sophos and other news stories wrongly accused me as one of them who started the outbreak. This is false.

See for more info!

I saw this on twitter and thought “uh oh” … But it is kind of funny.

Basically, you can insert a XSS into your tweet and force something to happen. Now on this case for examples I’ve done on a mouse over it sends you to Rick Astleys song.  Lets call it, Tweet Rolling?

See the damage here:

So, basically. If you see any text like this. Don’t mouse over it!

There are also other codes where you can basically break a users twitter page. ERK!

Lets hope Twitter fix it very soon!

Leave a Reply