LINE: Reflected XSS in OAUTH2 login flow

2019-09-18T11:57:36
ID H1:697099
Type hackerone
Reporter derision
Modified 2020-04-21T02:53:04

Description

The reporter found a reflected XSS in the OAUTH2 login flow which could have allowed potential attackers to steal credentials or hijack accounts by sending a message to the victim containing a malicious URL.