Stefan Mileschin

Have you ever noticed that, when bugs like this are found, Facebook always classifies them as "low risk." It kinda makes you wonder what it takes to be considered high risk. Check Point said the vulnerability can have a severe impact as it could be used in fraud campaigns to change the content of a conversation, or to replace legitimate links and files with malicious ones. The security firm noted that the flaw affected both the web and mobile versions of the messaging application.

http://www.hardocp.com/news/2016/06/...messenger_app/