Back to directory
WRITEUP #6092

I figured out a way to hack any of Facebook’s 2 billion accounts, and they paid me a $15,000 bounty for it

RCEBruteforceAccount takeover
by@anandpraka_sh(Anand Prakash)
Bounty
15,000
Program
Meta / Facebook
Published
Feb 9, 2018
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.freecodecamp.org/responsible-disclosure-how-i-could-have-hacked-all-facebook-accounts-f47c0252ae4d
RELATED WRITEUPS
Unlocking the Weak Spot: Exploiting Insecure Password Reset Tokens
RCEBruteforce
Bucket Monopoly: Breaching AWS Accounts Through Shadow Resources
CloudRCE
$500 for Cracking Invitation Code For Unauthorized Access & Account Takeover
RCEOTP bruteforce
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package
RCEDependency confusion

Built with ❤️ by Shubham Rawat