[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FD] Facebook Bug Bounty #23 - Session ID & CSRF Vulnerability

To: fulldisclosure@xxxxxxxxxxxx
Subject: Re: [FD] Facebook Bug Bounty #23 - Session ID & CSRF Vulnerability
From: Alfie John <alfiej@xxxxxxxxxxx>
Date: Thu, 12 Feb 2015 12:03:09 +1100

On Thu, Feb 12, 2015, at 02:10 AM, Scott Arciszewski wrote:
> >
> > Security Risk:
> > ==============
> > The security risk of the security vulnerability in the facebook
> > framework is estimated as critical. (CVSS 9.1)
> >
>
> Care to run that calculation by us?

If this does work, you'd be able to enumerate _all_ Facebook users and
delete _all_ public comments. I'd say that's pretty critical.

Alfie

-- 
  Alfie John
  alfiej@xxxxxxxxxxx

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Follow-Ups:
- Re: [FD] Facebook Bug Bounty #23 - Session ID & CSRF Vulnerability
  - From: Julius Kivimäki

References:
- [FD] Facebook Bug Bounty #23 - Session ID & CSRF Vulnerability
  - From: Vulnerability Lab
- Re: [FD] Facebook Bug Bounty #23 - Session ID & CSRF Vulnerability
  - From: Scott Arciszewski

Prev by Date: [FD] Reflecting XSS vulnerabitlies, unrestricted file upload and underlaying CSRF in Landsknecht Adminsystems CMS v. 4.0.1 (DEV, beta version)
Next by Date: Re: [FD] Major Internet Explorer Vulnerability - NOT Patched
Previous by thread: Re: [FD] Facebook Bug Bounty #23 - Session ID & CSRF Vulnerability
Next by thread: Re: [FD] Facebook Bug Bounty #23 - Session ID & CSRF Vulnerability
Index(es):
- Date
- Thread