Laxman Muthiyah, the researcher who discovered the bug states on hisblogpost,

Obviously thats very disgusting isnt it?

Any photo album owned by an user or a page or a group could be deleted.

Yeah and also it uses the same Graph API, he said.

A new Facebook vulnerability that allows any user to delete anyones Facebook Photo Albums

This is the response you will get if you try to exploit the bug now

Took victims album id and tried to delete it.

I was very curious to see the result, Laxman adds.

He also added that Facebook has awarded him a bug bounty of $12,500 for discovering the bug.

Indian researcher discovers a new Facebook vulnerability that allows any user to delete Facebook Photo Albums

This is the response you will get if you try to exploit the bug now

spot_img

source: www.techworm.net