Khalil, a Palestinian System Expert recently posted a bug report on Mark Zuckerberg’s Facebook wall. The bug report reveals a critical vulnerability discovered by him that allows anyone to post on any third person’s wall.
He said that he was forced to post it publicly as Security team failed to acknowledge his discovery of such vulnerability which he reported on Facebook’s security feedback page earlier. This was done by him as Facebook offers a reward of US$500 for each real security bug report.
The Security team responded by saying that it isn’t a bug in response to Khalil’s second report in which he mentioned to reproduce the same posting on the Wall of a Facebook Security Expert.
Khalil has posted the screenshots on his blog showing details of the exploit, as well as his experience with guys at Facebook.