A security hacker recently found a flaw in a Facebook system that allowed developers to access anyone's Facebook account through app permissions.
Though Facebook has fixed this issue, Nir Goldshlager, a Web application security specialist who looks for these types of flaws professionally, found more app authorization bugs that need fixing, according to his blog. App permissions are what developers use to access the user data needed to run their apps. Users give them access permission when they install the apps.
"I found a couple more OAuth flaws in Facebook, just waiting for a fix to post about … Read more