It allowed to modify or remove any message, photo, file, link etc.
The vulnerability was actually found by the security firm Check Points security researcher Roman Zaikan.
Hence, the hacker could also alter the messages for their own malicious gain.
It allowed to modify or remove any message, photo, file, link etc.
By exploiting this vulnerability, cyber criminals could change a whole chat thread without the victim realizing.
For this, it was enough to find the handle parameter of each utility conversation called message_id.
