How I bypassed Facebook CSRF once again!
2016
bounty
bug
bugbounty
bypass
CSRF
exploit
facebook
facebook exploit
hack
vulnerability
7 comments
7 comments
I found a vulnerability in Facebook that allowed me to create arbitrary form in Facebook that send a POST request with CSRF token to any Facebook endpoints or external hosts!
It was very similar to this bug which I found in 2015.