Booking.com's OAuth Implementation Allows Full Account Takeover
from DarkReading 02 March indexed on 02 March 2023 20:01Researchers exploited issues in the authentication protocol to force an open redirection from the popular hotel reservations site when users used Facebook to log in to accounts.
Read more.