Back to directory
WRITEUP #5857

User credential are sent in clear text in Whatsapp web— FIXED | Facebook Bug Bounty

OtherCredentials sent over unencrypted channel
byThuvarakan Nakarajah
Program
Meta / Facebook
Published
Aug 18, 2018
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@Thuva11/user-credentials-are-sent-in-clear-text-fixed-facebook-bug-bounty-7f1e05ecedd9
RELATED WRITEUPS
Living off the VPN — Exploring VPN Post-Exploitation Techniques
OtherHardcoded secrets
Data Theft in Salesforce: Manipulating Public Links
OtherSOQL injection
When Certificates Fail: A Story of Bypassed MFA in Remote Access
Other2FA / MFA bypass
SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff
OtherSSTI
Ghost In The Ppl Part 1: Byovdll
OtherUse-After-Free

Built with ❤️ by Shubham Rawat