Actually there is XSS at m.facebook.com script "prompt_feed.php" parameter "user_message_prompt" as the cause for this issue. Pls google yourself for further info as I will not discuss in technically detail here and please be aware of any bit.ly link on facebook for the time being.
Sent by DiGi from my BlackBerry® Smartphone -----Original Message----- From: Ezwan Aizat Bin Abdullah Faiz <[email protected]> Sender: [email protected] Date: Tue, 29 Mar 2011 08:50:36 To: Open Web Application Security Project (OWASP) Malaysia Local Chapter<[email protected]> Reply-To: "Open Web Application Security Project \(OWASP\) Malaysia Local Chapter" <[email protected]> Subject: Re: [Owasp-Malaysia] Spamming Facebook Like Di laman web You can report any Facebook Likejackings to me, [email protected] Aizat 2011/3/29 Muhammad Rahezar Rahmat <[email protected]>: > Facebook Likejacking :) > > Sent by DiGi from my BlackBerry® Smartphone > > -----Original Message----- > From: Harisfazillah Jamel <[email protected]> > Sender: [email protected] > Date: Tue, 29 Mar 2011 19:50:01 > To: owasp-malaysia<[email protected]> > Reply-To: "Open Web Application Security Project \(OWASP\) Malaysia Local > Chapter" <[email protected]> > Subject: [Owasp-Malaysia] Spamming Facebook Like Di laman web > > Assalamualaikum dan salam sejahtera, > > Sebelum saya terlupa dan link ini kena blok. Aplikasi ini dipanggil Share. > > http://www.facebook.com/apps/application.php?id=206749070441 > > Apa yang berlaku bila kita melawat laman web ini > > > http://www.woamu.mangaku.net/2011/03/ barack-obama-mengundurkan-diri-dari.html > > Saya jarakkan, jika mahu melawat logout dari facebook. > > Laman web itu akan auto like.... > > Untuk makluman semua. > > -- > Malaysia Open Source Software Conference 2011 > MOSC2011 http://fb.me/mosc2011 > > http://portal.mosc.my/ > > LinuxMalaysia Network > http://www.facebook.com/Bukan.Sekadar.Internet.Sahaja >_______________________________________________ > Owasp-Malaysia mailing list > [email protected] > https://lists.owasp.org/mailman/listinfo/owasp-malaysia > > OWASP Malaysia Wiki > http://www.owasp.my > > OWASP Malaysia Facebook > http://www.facebook.com/OWASP.Malaysia > > OWASP Malaysia Twitter #owaspmy > http://www.twitter.com/owaspmy >_______________________________________________ > Owasp-Malaysia mailing list > [email protected] > https://lists.owasp.org/mailman/listinfo/owasp-malaysia > > OWASP Malaysia Wiki > http://www.owasp.my > > OWASP Malaysia Facebook > http://www.facebook.com/OWASP.Malaysia > > OWASP Malaysia Twitter #owaspmy > http://www.twitter.com/owaspmy > -- http://aizatto.com _______________________________________________ Owasp-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia OWASP Malaysia Wiki http://www.owasp.my OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy _______________________________________________ Owasp-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia OWASP Malaysia Wiki http://www.owasp.my OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy
