Exposed CDN access token allows modification of all newly uploaded Snapmatic photos

In this report, the researcher reported an exposure of CDN access token that allows an attacker to modify newly uploaded photo in GTA5 Snapmatics. The access token retained validity for a brief interval subsequent to the upload process, thereby providing a window of opportunity for content modification. This issue has been resolved by removing CDN fields from the response.