Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4424How I was able to generate Access Tokens for any Facebook user. IDOR Information disclosure Meta / Facebook Youssef Sammouda (@samm0uda) Bug Bounty2018-12-112023-06-13
3806Reflected XSS in graph.facebook.com leads to account takeover in IE/Edge Reflected XSS Account takeover Meta / Facebook Youssef Sammouda (@samm0uda) Bug Bounty2019-11-272023-06-13
2592Facebook account takeover due to unsafe redirects after the OAuth flow OAuth Open redirect Account takeover Meta / Facebook Youssef Sammouda (@samm0uda) Bug Bounty2021-04-302023-06-13