A bug meant Twitter Fleets could still be seen after they disappear

A bug meant Twitter Fleets could still be seen after they disappear

Twitter is the newest social media website to permit customers to experiment with posting disappearing content material. Fleets, as Twitter calls them, permits its cell customers put up brief tales, like photographs or movies with overlaying textual content, which might be set to fade after 24 hours.

But a bug meant that fleets weren’t deleting correctly and will nonetheless be accessed lengthy after 24 hours had expired. Details of the bug have been posted in a sequence of tweets on Saturday, lower than every week after the characteristic launched.

full disclosure: scraping fleets from public accounts with out triggering the learn notification

the endpoint is:

— cathode homosexual tube (@donk_enby) November 20, 2020

The bug successfully allowed anybody to entry and obtain a person’s fleets with out triggering a notification that the person’s fleet had been learn and by whom. The implication is that this bug might be abused to archive a person’s fleets after they expire.

Read More:  Sony will show off the first PlayStation 5 games on June 4th

Using an app that’s designed to work together with Twitter’s back-end programs through its developer API. What returned was a listing of fleets from the server. Each fleet had its personal direct URL, which when opened in a browser would load the fleet as a picture or a video. But even after the 24 hours elapsed, the server would nonetheless return hyperlinks to fleets that had already disappeared from view within the Twitter app.

When reached, a Twitter spokesperson stated a repair was on the way in which. “We’re conscious of a bug accessible by way of a technical workaround the place some Fleets media URLs could also be accessible after 24 hours. We are engaged on a repair that must be rolled out shortly.”

Twitter acknowledged that the repair signifies that fleets ought to now expire correctly, it stated it received’t delete the fleet from its servers for as much as 30 days — and that it could maintain onto fleets for longer in the event that they violate its guidelines. We checked that we may nonetheless load fleets from their direct URLs even after they expire.

Read More:  Dear Sophie: What does the Supreme Court’s DACA decision mean for employers?

Fleet with warning.

Twitter rolls out Stories, aka ‘Fleets,’ to all customers; can even check a Clubhouse rival


Add comment