Open in app

Sign In

Write

Sign In

Sameer Rao
Sameer Rao

37 Followers

Home

About

Jan 12, 2021

How I was able to see private profile picture of any WhatsApp Business user.

About Facebook Business Manager Small to large businesses use Business Manager to organise their business assets and information in one place. We can use Business Manager to control our Facebook assets and make sure that the right people have the correct access. Business Manager Admin can only add assets which has owned by him…

Bug Bounty

2 min read

How I was able to see private profile picture of any WhatsApp Business user.
How I was able to see private profile picture of any WhatsApp Business user.
Bug Bounty

2 min read


Mar 5, 2019

Fixed : Disclose private Videos on Facebook

Impact This could allow a malicious user to see private videos provided the malicious user knew the video FBID Endpoint — https://developers.facebook.com/v2/async/videos/?video_id=xxxxxxxxx This endpoint returned video source of any Facebook video either it was shared in message, story or at workplace. Timeline: Reported — 18 Nov , 2018 Fixed — 20 Nov , 2018 Bounty — 16Janaury , 2019

Facebook

1 min read

Facebook

1 min read


Mar 5, 2019

Fixed : Brute-force Instagram account’s passwords

Description : We can add an Instagram account to a Facebook Page having a role on the page as an admin or editor. …

Facebook

2 min read

Fixed : Brute-force Instagram account’s passwords
Fixed : Brute-force Instagram account’s passwords
Facebook

2 min read


Mar 5, 2019

Fixed : Register any email address on Facebook Account.

If you believe your account has been compromised by another person or a virus, To help keep your Facebook account secure, Facebook will take you through a few steps to change your password and make sure any recent changes to your account came from you. Link — https://www.facebook.com/hacked POC Video- /hacked feature added an unconfirmed email address on my account. Impact — This could have allowed malicious users to take over any emails not confirmed on Facebook and this could potentially allow a malicious individual to access third party apps which rely on Facebook account verification of email.

Security

1 min read

Fixed : Register any email address on Facebook Account.
Fixed : Register any email address on Facebook Account.
Security

1 min read

Sameer Rao

Sameer Rao

37 Followers

Security Researcher

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech