Facebook Exploit For Great Justice​

https://diogoreal.wordpress.com/2016/11/25/facebook-vulnerable-to-open-redirect/

Quote:

“I created an app and used one of my domains to replicate the issue:

https://www.facebook.com/dialog/share?app_id=1305980872765022&display=popup&href=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3D1DWiB7ZuLvI&feature=share&redirect_uri=http%3A%2F%2Ffacebookwhitehat.tk

In order to make it work, while browsing the link shown above, the user needs to click “cancel” or “share” buttons to get redirected.”

Advertisements