Bug Bounty Channel
16.07.2026 05:12 · 👁 364
🏦 Rocket.Chat Report
⚡ Title: Stored XSS in Rocket.Chat HTML File Export — Unauthenticated Entry via LiveChat
🔍 Reporter: olidayw (Denis Rostilov)
📋 Details:
└ 📊 Status: resolved
└ ⚡ Severity: Medium
└ 🎯 CWE: Cross-site Scripting \(XSS\) - Stored
└ 🔢 CVE: None
⏰ Timeline:
└ 🔓 Disclosed: 2026-07-16 05:02:04 UTC
└ 📝 Created: 2026-06-03 13:37:47 UTC