| How I was able to reveal page admin of almost any page on Facebook |
|
|
|
| This is how i was able to See and Delete your Private Facebook Portal photos |
|
|
|
| Disclose Ad Accounts linked with Instagram Accounts |
|
|
|
| Bypass video capture limit on Ray-Ban Stories |
|
|
|
| This is how i was able to Permanently Crash all Mapillary users within minutes |
|
|
|
| How I was able to revoke your Instagram 2FA |
|
|
|
| Tagged User Could Delete Facebook Story |
|
|
|
| Unauthorized access to any Facebook user’s draft profile picture frames |
|
|
|
| Force Browsing bug at Facebook business plan ($500 Bounty) |
|
|
|
| Multiple bugs allowed malicious Android Applications to takeover Facebook/Workplace accounts |
|
|
|
| Facebook Messenger for MacOS contained valid hardcoded FB access token (employee's token?) |
|
|
|
| Unlimited report user in Instagram (Facebook) leads to abuse risk. |
|
|
|
| A Facebook bug that exposes email/phone number to your friends |
|
|
|
| How I Was Able to delete any facebook story where am I mentioned or tagged |
|
|
|
| Facebook email disclosure and account takeover |
|
|
|
| More secure Facebook Canvas : Tale of $126k worth of bugs that lead to Facebook Account Takeovers |
|
|
|
| Now Patched Vulnerability in WhatsApp could have led to data exposure of users |
|
|
|
| Bypassing 2-Factor Authentication for Facebook Business Manager (Bounty: 1000 USD) |
|
|
|
| Retrieve Archived Stories Of Any Public Instagram Account. |
|
|
|
| Disclose WhatsApp Number of Instagram Accounts Despite Setting Set to be Hidden |
|
|
|
| Confirming any new Email Address bug in Facebook (Part-4) |
|
|
|
| Facebook Bug:Invite user to Like a Page even after they decline the Page Like Invite |
|
|
|
| Access to CrowdTangle Deletion Framework API |
|
|
|
| View the country of a private Instagram User |
|
|
|
| Facebook Messenger for android indirect thread deletion vulnerability. |
|
|
|
writeups.xyz
/
Meta / Facebook