Facebook IDOR bug in GraphQL
Insecure Direct Object Reference (IDOR)
The vulnerability type "IDOR": allows any potential attacker to change the account settings for another user
https://www.youtube.com/watch?v=lY_5FHhRVko&feature=youtu.beThe vulnerability type "IDOR": allows any potential attacker to change the account settings for another user
https://www.youtube.com/watch?v=lY_5FHhRVko&feature=youtu.be