On Sun, Apr 3, 2011 at 4:26 PM, Javier Bassi javierba...@gmail.com wrote:
Reported this issue to Facebook team on 03/22/11 and Facebook team
acknowledged this issue on 03/29/11 and fixed this vulnerability.
They still have redirects on apps made by their users, and they don't care
Chris,
If it's social and it's Facebook, it must be good :)
Cheers,
Chris.
On Mon, Apr 4, 2011 at 8:22 AM, Chris Evans scarybea...@gmail.com wrote:
On Sun, Apr 3, 2011 at 4:26 PM, Javier Bassi javierba...@gmail.comwrote:
Reported this issue to Facebook team on 03/22/11 and Facebook team
Hi all,
URL redirection vulnerability observed in Facebook. Facebook
application has not sanitized the “redirect” input parameter. if you provide
redirect parameter to any third party site then the web page is
redirecting to the third party site. This would aid phishing attacks by using
an
Reported this issue to Facebook team on 03/22/11 and Facebook team
acknowledged this issue on 03/29/11 and fixed this vulnerability.
They still have redirects on apps made by their users, and they don't care
http://apps.facebook.com/truthsaboutu/track.php?r=http://www.google.com
and if someone