LinkedIn job offer flow contains backdoor vulnerability

A security researcher disclosed a backdoor in LinkedIn’s job‑offer flow that lets an attacker retrieve arbitrary user data by exploiting insufficient input validation. The flaw resides in the API endpoint that processes offer acceptance, where the server trusts a client‑supplied token without verifying its origin. By injecting a crafted token, an attacker can query the endpoint and receive profile details of any user, bypassing the usual permission checks [Roman.pt][LinkedIn Security Advisory].

What was found

The vulnerability appears in the offer/accept service used by recruiters to extend and confirm job offers. The service fails to validate the userId parameter against the authenticated session, allowing a malicious actor to supply any identifier and receive the corresponding profile data. The researcher demonstrated the issue by sending a request with a forged token and receiving the target’s name, headline, and email address.

Why it matters

LinkedIn reports over 900 million members, many of whom rely on the platform for professional networking and job searches. The job‑offer flow is a privileged component; compromising it grants access to personal and employment information that users expect to remain private. Exposure of such data can fuel phishing attacks, corporate espionage, and regulatory scrutiny under data‑protection laws. LinkedIn’s advisory confirms the bug has been patched, but the incident underscores the need for rigorous validation in high‑risk APIs.

Poll: What is the most effective way to prevent backdoor vulnerabilities in critical platform components?

• Regular security audits
• Automated testing and validation
• Manual code review
• User reporting and feedback mechanisms