Yesterday, a friend of mine, YM me and inform me regarding the SQL injection that he found.
After tested, I’ve found that the SQL injection is working and I straight away launch a report to Facebook team… But until now, the vulnerability still haven’t been patched by them.
So , if you are a Facebook user, please change your password 🙂
Another thing about Facebook is.. I hate Superpoke, not bacause of the application, but the Superpokers. Hahaha.. I already block and remove the application from me account..