Vulnerability in FindFace allowing to get user id without payment
The FindFace service is already well known to everyone to search for a contact user by photo.
Recently, the system introduced a condition under which a link to the profile could only be obtained by paying money.
There is a small hack under the cat to remove this restriction and a little about why the data inside your application should be encrypted.
In fact, everything is quite trivial. When you try to go to the page of a pretty woman that you find, the message that your lover's profile will be available after the payment of a certain amount of shekels will most likely come out.
')
But do not be in a hurry. After all, Find Face does not encrypt data in any way, so most likely you will find its id through ng-inspector (browser extension that allows you to view application data written in angularJS).
With a simple ctrl + c ctrl + v we get the ill-fated profile, and also enjoy the saved shekels in your pocket.
The developers were sent a notification about the presence of a vulnerability, so I don’t think that someone will suffer much from this. On the scandal, it also does not particularly pull, just another small reminder to other developers that hiding and encrypting data will help in the future to avoid big problems.
Recently, the system introduced a condition under which a link to the profile could only be obtained by paying money.
There is a small hack under the cat to remove this restriction and a little about why the data inside your application should be encrypted.
In fact, everything is quite trivial. When you try to go to the page of a pretty woman that you find, the message that your lover's profile will be available after the payment of a certain amount of shekels will most likely come out.
')
But do not be in a hurry. After all, Find Face does not encrypt data in any way, so most likely you will find its id through ng-inspector (browser extension that allows you to view application data written in angularJS).
With a simple ctrl + c ctrl + v we get the ill-fated profile, and also enjoy the saved shekels in your pocket.
The developers were sent a notification about the presence of a vulnerability, so I don’t think that someone will suffer much from this. On the scandal, it also does not particularly pull, just another small reminder to other developers that hiding and encrypting data will help in the future to avoid big problems.
Source: https://habr.com/ru/post/302994/
All Articles