Wednesday, January 5, 2011

Facebook Local host Exploit

Found some interesting thing with facebook today ... its probably a internal DNS addressing bug

try a post with https://127.0.0.1:8000/UID

replace UID with the profile ID of any user on facebook and take a look what happens...
Its actually the profile page of the user you mentioned in the URL for the local host