Bypass ad account roles vulnerability 2015
2015
ads
bounty
bug
business
bypass
exploit
facebook
facebook exploit
hack
roles
vulnerability
1 comment
1 comment
I discovered a vulnerability in Facebook that allowed a normal user in ad account to get unauthorized admin access in that ad account
admins in ad account can add any user to their ad account with these 3 type of role :
admins in ad account can add any user to their ad account with these 3 type of role :
- admin
- advertiser
- analyst
