[CRITICAL] Full account takeover using CSRF
High
X
X (Formerly Twitter)
Submitted None
Team Summary
Official summary from X (Formerly Twitter)
Reporter discovered a CSRF vulnerability in the linkage between Periscope accounts and Facebook. This vulnerability would potentially allow for account take-over of Periscope accounts. The problem was resolved and the reporter awarded a bounty.
Actions:
Reported by
yipman
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Cross-Site Request Forgery (CSRF)