Back to directory

WRITEUP #5038

Broken session management leads to bypass 2FA and Permanent access to Facebook user’s

Auth BypassAuthentication bypass

by@0xBarakat(Mahmoud Barakat)

Program

Meta / Facebook

Published

Nov 19, 2019

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://medium.com/@0xBarakat/broken-session-permanent-access-to-facebook-users-cfed68684113

▸ RELATED WRITEUPS

Breaking the Barrier: Admin Panel Takeover Worth $3500

Auth BypassAuthentication bypass

SAML Authentication Bypass Leading to Admin Panel Access

Auth BypassSAML

Breaking Down Barriers: Exploiting Authenticated IPC Clients

Auth BypassIPC client

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

Interesting Story of an Account Takeover Vulnerability

Auth BypassAccount takeover

Built with ❤️ by Shubham Rawat