Comment on Dumb glasses
Katana314@lemmy.world 8 hours agoI’ve definitely seen that if it’s a url, my preview will tell me the title of the webpage on the other end. That might only scan the basics, but I don’t think it’s implausible that preview code could have vulnerabilities.
jaybone@lemmy.zip 8 hours ago
If it’s showing you the title, then it visited the page already.
Katana314@lemmy.world 7 hours ago
No, if they’re security conscious, then it may mean they only did a request that scanned the HTML for a <title> tag. That means one WGET call, but a far cry from a standard definition of “visiting” in which your device’s JS parser starts running their unknown code and page instructions.
Sirdubdee@piefed.social 7 hours ago
So put the injection into the title? Got it