Y

YouLibs

Remove Touch Overlay

Facebook IDOR bug in GraphQL

Duration: 01:48Views: 10.8KLikes: 290Date Created: Apr, 2019

Channel: Update - أب ديت

Category: Science & Technology

Tags: bugfacebookgraphqlidor

Description: Acknowledged by "FaceBook" Security Team Today in Amman, Jordan Got acknowledged by Facebook Security Team After discovering a security issues in a "portal" store "portal.facebook.com" A store dedicated to the sale of "Portal and Portal+" devices provided by Facebook recently. The vulnerability type "IDOR": allows any potential attacker to change the account settings for another user حصلت على أعتراف من الفريق الامني في شركه فيسبوك بعد أبلاغي عن خلل أمني متجر portal.facebook.com المخصص لبيع أجهزة الاتصال portal & portal+ التي وفرتها فيسبوك مؤخرا. نوع الثغره "IDOR" تسمح لأي مهاجم محتمل بتغير اعدادت الحساب لاي مستخدم اخر على خدمة portal.facebook.com PoC : youtu.be/lY_5FHhRVko HOF : web.facebook.com/whitehat/thanks Timeline: 10/10/2018 Me, Submitted Report 15/10/2018 FB, Need More Info and Sent a reply 18/10/2018 FB, Need More Info and Sent a reply 22/10/2018 FB, Reproduce my report 25/10/2018 FB, Report Triaged 07/11/2018 Me, Ask any update? 14/12/2018 Me, Ask Any Update? 25/01/2019 Me, Ask Any Update? 26/02/2019 Me, Ask Any Update? 26/02/2019 FB, Apologize to daley!! 01/03/2019 Me, ask any update? 15/04/2019 Me, ask any update? 15/04/2019 FB, Issue Fixed and confirm 29/04/2019 FB, bounty awrded

Swipe Gestures On Overlay
Home
Channels
All Videos
Categories
Tags
Related
Infinite Masonry

Related

Sorts:
Filters:
CategoryChannelDate CreatedDurationLikesPopularityTagsTitleViews
1-10mins10-30mins30mins+past weekpast monthpast year2021-20242015-2020
  • FM Transmitter - Without CoilCreative Science (1)07:09Jul, 2018588.2Kbackgroundvideo thumbnail for: FM Transmitter - Without Coil
  • Build A Long Range FM Transmitter (Homebrew Radio Station)TechBuilder05:53Jul, 20142.3Mbackgroundvideo thumbnail for: Build A Long Range FM Transmitter (Homebrew Radio Station)
  • Mangrove Tree Crab vs Leopard Wandering Spider | MONSTER BUG WARSMonster Bug Wars - Official Channel08:26Jan, 20162.2Mbackgroundvideo thumbnail for: Mangrove Tree Crab vs Leopard Wandering Spider | MONSTER BUG WARS
  • Mudeye vs Water Bug | MONSTER BUG WARSMonster Bug Wars - Official Channel08:36Jan, 20161.6Mbackgroundvideo thumbnail for: Mudeye vs Water Bug | MONSTER BUG WARS
  • Crab Spider vs Spiny Orb Weaver | MONSTER BUG WARSMonster Bug Wars - Official Channel08:23Jan, 2016651.8Kbackgroundvideo thumbnail for: Crab Spider vs Spiny Orb Weaver | MONSTER BUG WARS
  • Dinosaur Ants vs Trap Jaw Ants | MONSTER BUG WARSMonster Bug Wars - Official Channel07:50Jan, 20163.5Mbackgroundvideo thumbnail for: Dinosaur Ants vs Trap Jaw Ants | MONSTER BUG WARS
  • 7 Amazing Survival Axes You NEED To HaveZip HD10:03Sep, 2017785.4Kbackgroundvideo thumbnail for: 7 Amazing Survival Axes You NEED To Have
  • Overclocked Bug Zapper. 2750V to 50000V++styropyro07:46Oct, 20173.9Mbackgroundvideo thumbnail for: Overclocked Bug Zapper. 2750V to 50000V++
  • Australian Walking Stick Insects Are Three Times Weirder Than You Think | Deep LookDeep Look05:00Jan, 2022544.6Kbackgroundvideo thumbnail for: Australian Walking Stick Insects Are Three Times Weirder Than You Think | Deep Look
  • How a Kissing Bug Becomes a Balloon Full of Your Blood | Deep LookDeep Look04:59Nov, 20211.7Mbackgroundvideo thumbnail for: How a Kissing Bug Becomes a Balloon Full of Your Blood | Deep Look
    • Items shown
    to: 10
    of:999
    123...100