Tag Archive: Microsoft

Vulnerability in Microsoft Edge could allowed to steal local files

It’s happened. While I was researching on Facebook I discovered a critical bug that an endpoint could allowed to download web pages automatically . Seems many of the fb pages have a user session containing full privileges user access_tokens etc which leads to Account Takeover. So, If we can create iframe with “https://example.com/?download=1” It will […]

Read More →