Back to directory
WRITEUP #6242

Insecure Direct Object Reference In Facebook Events

IDOR
by@armaancrockroax(Armaan Pathan)
Bounty
2,000
Program
Meta / Facebook
Published
Aug 11, 2017
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@armaanpathan/idor-was-leading-to-privilege-escalation-and-violating-the-facebook-policy-355c67c654e6
RELATED WRITEUPS
Zomatoooo! IDOR in Saved Payments
IDOR
How I got my first $13500 bounty through Parameter Polluting (HPP)
IDORXSS
The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover
APIGraphQL
A Creative Way To Get Someones YouTube Videos Deleted + A Copyright Strike Against Their YouTube Channel
IDORBroken Access Control
Bypassing ACLs – IDOR exploitation via HPP
IDORHTTP parameter pollution

Built with ❤️ by Shubham Rawat