Archives for the Date January 29th, 2010

Facebook sandbox escape

My friend mario (he who never blogs) found XSS in facebook a couple of times. This tempted me to look at their sandbox, I didn’t register for an account but just tried breaking their FBML console. They have their own FBML (Facebook markup language) which is just a basic HTML/CSS and a separate Javascript sandbox […]