المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : ثغرات موقع FaceBook



Laith200
07-18-2010, 01:26 PM
} else if (value[i] === null) {
value[i] = 'null';
}
}
var str_value = '[' + value.join(',') + ']';
queue.push(str_value);
clear_queue();
};
})();
}
/**
* @provides click-ref
* @inline
*/

var user_action = (function() {
var ue_count = 0, logged = 0;
return function(node, context, e, s) {
var type = null;
if (e) {
if (logged) {
// we might be picked up by a few
// different listeners, we only log
// once action for each event.
return;
} else {
logged = 1;
setTimeout(function(){logged = 0;}, 0);
}
}

var href = null;
var intern_ref = 'none';
// internal referral
if (!!node) {
/*
* getting the href of the node
* note that there is one issue of the photostream that we cannot
* get the correct photo URI: the "next" link in the photostream
* is wrong
*/
href = node.href;

if ((!href || node.rel) && node.getAttribute) {
// ajaxify is the preferred id for the rel case
// for cases like "like" button, its ajaxify gives a value of 1
var ajax = node.getAttribute('ajaxify');
if (ajax && ajax != '1') {
href = ajax;
}
}

if (!href && node.name) {
// this is for cases that the interaction does not involve an URI.
// e.g. "like" button
href = node.name;
}

if (!href) {
href = 'none';
}

// try to get the the closest wrapping pagelet or designated wrapping div
// (depending on which happens first) of this node, if exists.
// you can use this to track the detailed internal referral for
// user action.

// define the div ids you want to track as internal referral, if the node
// does not have wrapping pagelet or the wrapping pagelet is not detailed
// enough.
var div_ids = {
profile_minifeed : 1,
info_tab : 1,
gb_content_and_toolbar : 1,
gb_muffin_area : 1,
ego : 1,
bookmarks_menu : 1,
jewelBox*****: 1, // Notifications related
jewel*****: 1,
BeeperBox: 1
};
for (var cur = node;
cur && cur != ********.body;
cur = cur.parentNode) {
if (!cur.id || typeof cur.id !== 'string') {
continue;
}
if (cur.id.substr(0, 8) == 'pagelet_') {
intern_ref = cur.id.substr(8);
break;
}
if (div_ids[cur.id]) {
intern_ref = cur.id;
break;
}
}
}

ue_count ++;
var ue_ts = (+new Date());
var ue = ue_ts + '/' + ue_count;

********.cookie = "act=" + encodeURIComponent(ue)
+ "; path=/; domain="
+ window.location.hostname.replace(/^.*(\.facebook\..*)$/i, '$1');
// we don't set expires time, so default to browser session termination
// window location takes facebook.com... in case of TLDs

if (!s) {
s = 'r'; // reference only
}

Arbiter.inform(
'user/action',
{context: context, event: e, node: node});

window.Log && Log('act', [ue_ts,
ue_count,
href,
context,
type,
intern_ref,
s]);
return ue;
}
})();

//]]>

رعدة
07-18-2010, 03:59 PM
مشكور على المعلومة لكنها أخي قديمة على موقع الثغرات inj3ct0r

makaveli
07-18-2010, 09:01 PM
مكرر للقفل يا اخي

kadirofe
08-02-2010, 02:33 PM
اخي لم افهم شىء ههههههههههههههههههههههههه هههه