Facebook many vulnerabilities found by @AnonymousOwn3r https://twitter.com/AnonymousOwn3r http://www.facebook.com 2720/2724 100% Cross-site Request Forgery Cross-site Request Forgery (CSRF) is a type of attack whereby unauthorized commands are transmitted from a user that the application trusts. Unlike Cross-site Scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has in a user's browser. solution: Url and Forms that perform important operations must be protected by random tokens (hidden nonce values). These tokens must be checked for validity at the server before the request is processed. url: http://www.facebook.com/ form:
...
url: http://www.facebook.com/find-friends?ref=pf form:
...
url: http://www.facebook.com/facebook form:
...
url: http://www.facebook.com/pages/create.php?ref_type=sitefooter form:
...
url: http://www.facebook.com/help/adpolicy form:
...
url: http://www.facebook.com/r.php?possible_fb_user=1&is_enabled=1&next=https%253A%252F%252Fwww.facebook.com%252Fphoto.php%253Fv%253D3802752155040&locale=en_US form:
...
url: http://www.facebook.com/r.php?possible_fb_user=1&is_enabled=1&next=https%253A%252F%252Fwww.facebook.com%252Fphoto.php%253Fv%253D3802752155040&locale=en_US form: