Brett Buerhaus

Security research, vulnerability disclosures, and puzzle write-ups.

Menu

Skip to content
  • Home
  • Resume
Home2014April

Month: April 2014

Facebook – Send Notifications to any User Exploit

Author: image Brett Buerhaus
April 7, 2014February 25, 2024 bbuerhaus Security bounty, facebook, security, whitehat

I discovered a vulnerability on Facebook that allowed you to send notifications to any user on Facebook. This could have been used to spam any content you wanted to all users on Facebook.

Continue reading →

Twitter Feed

Tweets by @bbuerhaus

Tags

1o57 admin airbnb anime application security appsec badge_challenge bounty bounty programs bug bounty burp coin_artist cross-site request forgery cross-site scripting crypto CSAW csrf css CTF defcon defcon22 detection facebook flickr google hackerone javascript JavaScript Reversing lfi lfr mobile montecrypto potatosec puzzle python regex research security sqli sql injection ssrf web whitehat xss yahoo

Recent Posts

  • Go Go XSS Gadgets: Chaining a DOM Clobbering Exploit in the Wild
  • Reversing and Tooling a Signed Request Hash in Obfuscated JavaScript
  • BT’s Metaversal Album Treasure Hunt Solution
  • Cr0wnGhoul 1ETH Puzzle: You’ve Got Mail Write-up
  • coin_artist 50k Follower Puzzle – Write-up

Archives

  • February 2024
  • January 2024
  • October 2021
  • May 2021
  • September 2020
  • July 2020
  • June 2020
  • March 2020
  • October 2019
  • October 2018
  • April 2018
  • June 2017
  • March 2017
  • August 2016
  • May 2016
  • April 2016
  • September 2015
  • August 2015
  • February 2015
  • January 2015
  • October 2014
  • August 2014
  • July 2014
  • June 2014
  • April 2014