FACEBOOK Bug Bounty PoC by @Jafar_Abo_Nada

Facebook Write-ups, PoC, and exploitation codes:

1. malicious person add people to the "Top Fans" write up and PoC video

2. Change the user status "turn on OR Off "in "Top Fans write up and PoC video

3. Privileged Escalation in Facebook Messenger Rooms write up and PoC video

4. Disclose Facebook Business Manager admins write up and PoC video

5. Facebook IDOR bug in GraphQL write up and PoC video .

6. Rights Manager Graph API Disclosure of business employee to non business employee

7. Group Manager in Page Disclosure of business employee's to non-business employee's

8. Spark AR discloses the name of the business admin when they create a effect by "AR Manager"

9. "Bypass" SparkHup Disclosure of business employees by AR Manger

10. "Facebook Graph API v2.6 used in Rights Manager Disclosure of business employee to non business employee"

11. "CSRF on portal.fb.com "informative" "