Rockstar Games: Image Injection vulnerability affecting www.rockstargames.com/careers may lead to Facebook OAuth Theft

2019-02-06T00:29:54
ID H1:491654
Type hackerone
Reporter netfuzzer
Modified 2020-06-24T17:18:28

Description

In this report, the researcher demonstrated a method to chain together separate vulnerabilities that, under certain conditions, could cause a user's Facebook Oauth tokens to leak via the Referer header. The specific vulnerability that was addressed in this report was the image injection component of the attack chain. Specifically, the researcher found an image injection vulnerability impacting https://www.rockstargames.com/careers#/offices/ that when combined with other vulnerabilities would cause the behavior described above. We have since fixed multiple components of this attack chain, including an open redirect and the image injection vulnerability initially described in this report.