From cybersecuritynews.com
Exclusive!! Security researcher discovered a critical account takeover Vulnerability in Facebook OAuth Framework let hackers hijack anyone’s Facebook account among billion of Facebook users.
The vulnerability resides in the“Login with Facebook”
feature that uses the OAuth 2.0 Authorization Protocol to exchange the tokens between facebook.com and third-party websites.
OAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 supersedes the work done on the original OAuth protocol created in 2006.