Profile

Cover photo
Pouya Darabi
Works at Candoo
Attended Mazandaran University Of Science And Technology
Lives in Babol
49,287 views
AboutPostsPhotosYouTube

Stream

Pouya Darabi

Shared publicly  - 
 
Facebook - How I bypassed Facebook CSRF Protection 2015
I discovered a critical vulnerability in Facebook that allowed an attacker to bypass Facebook CSRF protection! more information about CSRF at owasp 'fb_dtsg' Anti-CSRF token supposed to get validated at server-side and if an action request haven't that toke...
I discovered a critical vulnerability in Facebook that allowed an attacker to bypass Facebook CSRF protection! more information about CSRF at owasp 'fb_dtsg' Anti-CSRF token supposed to get validated at server-side and if an action request haven't that token, Facebook will drop the request ...
7
Meysam Jafari's profile photo
 
gj dude
Add a comment...

Pouya Darabi

Shared publicly  - 
 
Facebook - bypass ads account roles
I discovered a vulnerability in Facebook that allowed a normal user in ad account to get unauthorized admin access in that ad account admins in ad account  can add any user to their ad account with these 3 type of  role : admin advertiser analyst read more ...
I discovered a vulnerability in Facebook that allowed a normal user in ad account to get unauthorized admin access in that ad account admins in ad account can add any user to their ad account with these 3 type of role : admin; advertiser; analyst. read more about these roles link ...
7
Add a comment...

Pouya Darabi

Shared publicly  - 
11
Ramin Farajpour's profile photo
 
)
Add a comment...
Work
Employment
  • Candoo
    Developer, 2013 - present
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Babol
Links
Contributor to
Education
  • Mazandaran University Of Science And Technology
    IT, 2012
Basic Information
Gender
Male