National Cyber Warfare Foundation (NCWF)

Critical XSS Vulnerabilities in Meta Conversion API Enable Zero-Click Account Takeover
0 user ratings		2026-01-17 06:51:21
milo
Red Team (CNA)

Security researchers have uncovered two critical cross-site scripting (XSS) vulnerabilities in Meta’s Conversions API Gateway that could enable attackers to hijack Facebook accounts on a massive scale without any user interaction. The flaws affect Meta-owned domains, including facebook.com and meta.com, as well as potentially 100 million third-party deployments of the open-source gateway infrastructure. Understanding the […]


The post Critical XSS Vulnerabilities in Meta Conversion API Enable Zero-Click Account Takeover appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Divya

Source: gbHackers
Source Link: https://gbhackers.com/critical-xss-vulnerabilities-in-meta-conversion-api/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.