I had disclosed it in details hoping that they will notice it and fix it quickly,

Ok, Facebook Groups has a huge security flaw by which any group member can pretend to be anyone else in that group, and post in the group on behalf of that user. It is FATAL. I’ve reported to Facebook libri and I hope they should take immediate action for it.
I had disclosed it in details hoping that they will notice it and fix it quickly,

and taking it down again. So if any Facebook official wants to know in details, drop me a mail to hasin_at_leevio_dot_com or better libri check today’s submitted bug reports with a “MASSIVE SECURITY FLAW” text inside it.
Peace. * update: libri submitted this again to facebook.com via their whitehat program and someone named Alex contacted libri me. He asked me a few questions on how to reproduce the flaw and he said that they are looking into it.
One blogger likes this. This entry was posted in Exploit , Facebook , Facebook Graph API , PHP , Security , Vulnerable and tagged EXPLOIT , Facebook , PHP , RISK , security . Bookmark libri the permalink . Post navigation
Reply
September 26, 2012 at 11:16 pm
This type of Bugs are badly uses in so many way. Social Engineering is an art of Hacking. If this vulnerability really works, FB users are in risk right now. But, please, do not publish real Exploit.Just wait for FB reply.
that stupid guy was right – who the fuck I am to care for the bug – and why should I.
pink says:
You are commenting using your WordPress.com account. (  Log Out  /  Change  )