hack2learn

[Facebook | Aol] Internal ip disclosure that really hurts.

There are a lot of factors who can disclose an internal ip address. All of these factors are groupped in the lowsest vulnerability risk category because they do not expose an organisation at imminent risk. Also, there are a lot of ways that a penetration tester can find an internal…

Facebook open-redirect vulnerability that does the social engineering job too.

Twitter: @teh_h3ck Email: vag[d0t]mourikis[@]gmail.com Update: Hours after the initial post, facebook patched the vulnerability. It seems that the impact is higher than expected? Prologue Open redirects are security bugs that can easilly be exploited. From OWASP: An open redirect is an application that takes a…