
Highly wormable clickjacking in player card
HackEDU has replicated a clickjacking vulnerability in Twitter that was found through HackerOne’s bug bounty program. Try this lesson to learn more about clickjacking and how this vulnerability can be exploited to create a worm. You will create a clickjacking attack that causes a user to post to their feed without their knowledge and then leverage this to create a worm.
Try Sandbox FreeAbout This Walk-Through

Tweeter.com Application
Tweeter.com, much like Twitter, is a social media application where you can follow users, see your follower''s feeds, and tweet messages, including dynamic Tweeter cards.

Tweeter Cards
Discover the clickjacking vulnerability in the Tweeter cards, explore the vulnerability, and exploit it. HackEDU's lesson will walk you through this vulnerability step by step teaching you about the clickjacking and exploitation along the way.
Hack the Sandbox for Free
Try Sandbox FreeLearn more about our Secure Development Training for Developers
Learn More