Back to directory
WRITEUP #4006

URLs in img tag aren’t passed through safe_image.php which lead to exposure of Facebook users IPs.

Logic BugLogic flaw
by@samm0uda(Youssef Sammouda)
Bounty
500
Program
Meta / Facebook
Published
Feb 15, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://ysamm.com/?p=603
RELATED WRITEUPS
Logic Flaw: I Can Block You from Accessing Your Own Account
Logic BugLogic flaw
“Like” Bypass on Customer Reviews — €500 bounty
Logic BugLogic flaw
Interesting Business Logic Error leads to Pre-Account Takeover via Verification bypass on GoogleVRP
Auth BypassAccount takeover

Built with ❤️ by Shubham Rawat