Back to directory

WRITEUP #3360

Force Browsing bug at Facebook business plan ($500 Bounty)

RCEBroken authorizationForced browsing

by@dewcode91(Dewanand Vishal)

Bounty

500

Program

Meta / Facebook

Published

Sep 29, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://dewcode.medium.com/force-browsing-bug-at-facebook-business-plan-500-bounty-73d1bb4883af

▸ RELATED WRITEUPS

CVE-2024-45195: Apache OFBiz Unauthenticated Remote Code Execution (Fixed)

RCEForced browsing

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

Built with ❤️ by Shubham Rawat