Got Listed into Facebook White Hat

July 31, 2012

GDay ! Got listed into Facebook security white hat page & got paid ! I have submitted Vulnerability which allow attacker to install the any 3rd party application using UI Readdressing attack. The Strange part was it was page already having protection to the Clickjacking vulnerability but protection was not working on the FF 3.2.6(issue is fixed) .

POC :

< y a w n>Feel Sleepy, Will update complete POC after some time{Got slow internet connection :/ } < / y a w n>

Thanks to Facebook for quick response and quick Fix… Special thanks to Garage 4 Hackers Members

We Provide Penetration Testing


We Provide Penetration Testing