[Full-disclosure] Malicious Code Execution Vulnerability In the URL Of crowdstar (Facebook Application Devloper)
rockey killer
skg102 at gmail.com
Thu Feb 4 09:03:24 GMT 2010
About Crowdstar <http://www.crowdstar.com>
The coolest social gaming company that provides games for social networking
sites as like in facebook.com . There are applications on the facebook
which are bieng devloped by crowdstar.
Vulnerability
Malicious code execution in the URL and redirection in the URL , which can
be further utilised to comromise accounts of users of facebook.
Vulnerability Reported on
Wed, Jan 20, 2010 at 12:37 AM
Vulnerability was fixed on
Wed, Jan 20, 2010 at 1:24 AM
Vulnerability was fixed by
Suren Markosian (Technical Member of Crowdstar)
Credits
This Vulnerability was discovered and reported by H4CK3R Crew<http://h4ck3r.in/>
--
Rockey Killer
It's all about Hacking and Security
http://h4ck3r.in/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/aeafbfba/attachment.html
Full-Disclosure is hosted and sponsored by Secunia.