Yaswanth Mangalagiri

Search This Blog

$$$ Facebook Page Crossposting Videos Bug Bounty

on June 25, 2022

Get link
Facebook
X
Pinterest
Email
Other Apps

Page editor cannot see the crossposting Page in the Page Settings.

But he can use a HTTP Post Request to send an invitation

Get link
Facebook
X
Pinterest
Email
Other Apps

Comments

Facebook Bug Bounty $$$$ : Crossposting Live Videos | Facebook Live

In the Facebook Page Settings, you could setup the option for Crossposting Live videos from other pages. The Attacker's page adds a Page (Victim's Page) for crossposting their videos Victim Page's Admin accepts the approval and the default option is Crossposting videos without further approval The Attacker starts live video and selects Victim's Page in the "Crosspost to more pages" Victim visits the Crossposting page in the Page settings and and removes Attacker's Page Attacker selects "Use camera" and clicks on "Go Live". The Victim's Page starts automatically crossposting the live video of Attacker, Bug Bounty of $500

Facebook Bug Bounty: Facebook group : users can sendJoin Requests after the Group Admin declined the Request to join

Group Admin invites the User with link. The User opens the discussion page and sees the Join Group Button user will request to join the group and his request will be declined After the user reloads the page he'll be shown with No Content page. But the user can send a request to join from the Discussion page.

Google form setting Bypass - Making my way to the Google's Hall of Fame !

G o o g l e ! Bug : Circumventing "Limit to 1 response" of Google forms ( Parameter Injection ) Discovered on: 30th, November 2016. Research Time: 2:00 p.m to 9:30 p.m. Earn more by display ads on blog with Lithific Ads The setting is "Limit to 1 response" which means only one response per user. Once you filled the form there will be no chance to edit the responses or again fill a new form. If you open the form to fill again, the response would be like the image below. There is no way to edit or fill another form (Hurdle 1). I created a test form and checked "Edit after submit". Once this test form is filled I can change the previous response. I clicked on the "Edit your response"and intercepted the request. I changed the form id and forwarded the request. I was able to see the form that was submitted. When I edited the form and submitted, a blank form was sent. (Hurdle 2). I analysed the requests f

$$$ Facebook Page Crossposting Videos Bug Bounty

Comments

Post a Comment