search

twitter / opensource-website

Twitter's open source website, identifying projects we've released, organizations we support, and the work we do to support open source.
https://opensource.twitter.dev
Apache License 2.0
3.03k stars 813 forks source link

BUG: Misleading Tweet Links Redirect to Scam Contents #266

Open eminmtas opened 11 months ago

eminmtas commented 11 months ago

Describe the bug Scam pages are tagging me in their tweets and sharing tweet links such as m.twitter.com/binance/..., but when clicked, they redirect to a different tweet, which is a scam tweet posted by a scammer. Upon inspecting the element, I can confirm that the link is the original Twitter link.

To Reproduce Steps to reproduce the behavior:

  1. Go to Twitter and log in.
  2. Navigate to the tweet with the tag or mention from the scam page.
  3. Click on the tweet link provided (e.g., m.twitter.com/binance/...).
  4. Observe that the link redirects to a different tweet, which is a scam.
  5. An example: Scam Tweet

Expected behavior The tweet link should lead to the original tweet mentioned in the scam page's tweet.

Screenshots I am sharing the SS's and a video:

https://github.com/twitter/opensource-website/assets/44838743/66af3d49-e7f8-4693-8a7a-fc5a502cf264

11 22 33

Environment All of the OS's and browsers are affected from this issue. I am using an android device and it is the same as web.

Additional context I posted a tweet about this bug.

eminmtas commented 11 months ago

Upon conducting further tests, we've observed that Twitter redirects based on the status number at the end of the link. If the status number remains the same, tweets are consistently redirected to the same tweet. This seems to be the underlying mechanism behind the issue. Please consider this additional information when investigating the bug.