Report Email Alerts Open Bug Bounty: 204,807 coordinated disclosures
Total Vulnerabilities Fixed: 97,267
187,359 vulnerable websites, 17,685 VIP websites
4,577 security researchers, 5,906 notification subscribers

Open Bug Bounty ID

OBB-198932

facebook.com Security Vulnerability

On the 20.12.2016 security researcher Oc3f Helped patch 772 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 5 recommendations
disclosed XSS vulnerability affecting facebook.com website.

On our side, we have notified website owner via all reasonable communication channels about the vulnerability, so it can be patched as quickly as possible.

Currently the vulnerability is patched and does not represent any security risk for the website or its visitors.

Vulnerability Details


facebook.com Description

Facebook 是一个联系朋友的社交工具。大家可以通过它和朋友、同事、同学以及周围的人保持互动交流,无限上传照片,发布链接和视频,更可以增进对朋友的了解。.

Vulnerable URL:

Other details:

Patched:Yes, at 23.01.2017
Latest check for patch:23.01.2017 19:42 GMT
Vulnerability type:XSS
Vulnerability status:Publicly disclosed
Alexa Rank3
VIP website status:Yes
Check facebook.com for malware:Click here
Check facebook.com SSL connection:Click here (Grade: A) Refresh Results

Mirror: Click here to view the mirror

Coordinated Disclosure Timeline

Vulnerability submitted via Open Bug Bounty20 December, 2016 12:22 GMT
Vulnerability existence verified and confirmed 22 December, 2016 06:16 GMT
Generic security notifications sent to website owner22 December, 2016 06:16 GMT
Notification sent to subscribers (without technical details)22 December, 2016 10:17 GMT
Vulnerability details disclosed by researcher22 December, 2016 22:22 GMT
Vulnerability patched by the website owner24 January, 2017 10:23 GMT

User Comments:

Please login via twitter to be the first one to comment.


Latest Vulnerabilities on *.facebook.com

OBB-ID Reported by Status Reported on
On Hold
08.12.2017
On Hold
08.12.2017
On Hold
08.12.2017
On Hold
08.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
07.12.2017
On Hold
06.12.2017

Latest Vulnerabilities Reported by Oc3f

OBB-ID Vulnerability Status Reported
On Hold
14.01.2018
On Hold
11.01.2018
On Hold
27.12.2017
On Hold
17.12.2017
patched
15.12.2017
On Hold
04.12.2017
patched
29.11.2017
On Hold
29.11.2017
On Hold
29.11.2017
On Hold
29.11.2017
On Hold
29.11.2017
On Hold
29.11.2017
On Hold
29.11.2017
On Hold
29.11.2017
On Hold
29.11.2017
On Hold
29.11.2017
On Hold
21.11.2017
On Hold
20.11.2017
patched
17.11.2017
On Hold
27.10.2017


LATEST VIP SUBMISSIONS

superbrightleds.com
Reported by RootByte Helped patch 433 vulnerabilities
Received 3 Coordinated Disclosure badges
on 19.01.2018
musica.com
Reported by ELProfesor Helped patch 200 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
revisor.mn.gov
Reported by ELProfesor Helped patch 200 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
mn.gov
Reported by ELProfesor Helped patch 200 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
onlyindianporn.net
Reported by deb_security Helped patch 358 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
vse.cz
Reported by fakessh Helped patch 309 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
theathletic.com
Reported by huntingforbug Helped patch 76 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 7 recommendations
on 19.01.2018
hdfilm.io
Reported by deb_security Helped patch 358 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
worldcat.org
Reported by deb_security Helped patch 358 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
portalanalitika.me
Reported by deb_security Helped patch 358 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018



LATEST SUBMISSIONS

wekastore.net
Reported by fakessh Helped patch 309 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
s-world.sk
Reported by milan_kyselica Helped patch 21 vulnerabilities
Received 2 Coordinated Disclosure badges
on 19.01.2018
svenskafans.com
Reported by Asmod3us Helped patch 2 vulnerabilities
Received 0 Coordinated Disclosure badges
Received 1 recommendations
on 19.01.2018
ddl.animeout.com
Reported by fakessh Helped patch 309 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
iris.intellisight.se
Reported by fakessh Helped patch 309 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 18 recommendations
on 19.01.2018
notape.net
Reported by milan_kyselica Helped patch 21 vulnerabilities
Received 2 Coordinated Disclosure badges
on 19.01.2018
cool-apple.cz
Reported by milan_kyselica Helped patch 21 vulnerabilities
Received 2 Coordinated Disclosure badges
on 19.01.2018
netbest10.com
Reported by AndresERiveraB Helped patch 71 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 19.01.2018
secure.psr.org
Reported by AndresERiveraB Helped patch 71 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 19.01.2018
mjnet.co.jp
Reported by AndresERiveraB Helped patch 71 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 19.01.2018