Rockstar Games: Image injection on /screenshot-viewer/responsive/image ( FIX BYPASS)

2019-03-05T16:03:35
ID H1:505259
Type hackerone
Reporter netfuzzer
Modified 2020-06-24T19:59:29

Description

In this report, the researcher identified an image injection issue in the screenshot-viewer utility on our website that could be combined with other vulnerabilities to result in sensitive token theft. We were able to quickly push out an update to resolve the image injection issue, thereby preventing this potential attack path.