WRITEUP #3724

Victim’s Anti CSRF Token could be exposed to Third-party Applications installed on user’s Device (500$)

ReconInformation disclosure

by@rohitcoder(Rohit kumar)

Bounty

500

Program

Meta / Facebook

Published

May 21, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://rohitcoder.medium.com/victims-anti-csrf-token-could-be-exposed-to-third-party-applications-installed-on-user-s-device-be8e40d511ba

▸ RELATED WRITEUPS

P3 (Medium) : How I Gain Access To NASA's Internal Workspace?!

ReconInformation disclosure

How I Got Bugs From Google Dorks

ReconInformation disclosure

How I can easily get four P1 at NASA using Simple Google Dorking.

ReconInformation disclosure

How 1 Exposed Honeywell API Gave us Control Over an Internal Engineering System

ReconMissing authentication

$1600 Bounty on a Main Domain

ReconSession fixation

Built with ❤️ by Shubham Rawat