Insufficient Rate Limitting on Facebook Fundraisers

Summary Facebook Fundraisers Lacks Rate Limiting Protection. Malicious actors can bruteforce this by sending different random credit or debit card numbers. This could result to large scale fraud. The Expected Behaviour is Once You tried to Repeatedly Link or Use a Declined or Invalid Credit/Debit Card the System Should block you from doing additional Transactions … Continue reading Insufficient Rate Limitting on Facebook Fundraisers