Thursday, February 5, 2009

FaceBook Vulnerable to SQL Injection?

[ Source: http://hackersblog.org/2009/02/04/facebook-hacked-o-baza-de-date-cu-milioane-de-conturi-ce-pot-fi-accesate-de-oricine/ ]

This just in, FaceBook is vulnerable to SQL Injection... well, not exactly. FaceBook apps are vulnerable to SQL Injection based on the posting on the HackersBlog website. Interestingly enough the screen shots provided are not really of the base FaceBook application, but rather the add-ons that people can code into this application.

So the question is... did someone ("unu") find a bunch of holes in poorly-written FaceBook applications, and if so... does that expose the rest of the FaceBook application to SQL Injection?

Stay tuned.

No comments:

Google+