CVE-2025-27136

creationtimestamp| type| source ---|---|--- 2025-03-10 19:38:32+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7039 2025-03-10 23:13:53+00:00| seen| https://t.me/cvedetector/19995 2025-07-24 15:47:44+00:00| published-proof-of-concept|...

CVE-2025-27136

LocalS3 is an Amazon S3 mock service for testing and local development. Prior to version 1.21, the LocalS3 service's bucket creation endpoint is vulnerable to XML External Entity XXE injection. When processing the CreateBucketConfiguration XML document during bucket creation, the service's XML...

io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by CVE-2025-27136 via io.github.robothy:local-s3-rest (>=1.10 <=1.20)

io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: CVE-2025-27136 Source advisory: SNYK:JAVA-IOGITHUBROBOTHY-9396840...

io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=7.3.1 <=7.3.7) potentially affected by CVE-2025-27136 via io.github.robothy:local-s3-rest (>=1.2 <=1.20)

io.github.robothy:local-s3-rest MAVEN version =1.2, =1.2, =7.3.1, =7.3.7 Source cves: CVE-2025-27136 Source advisory: OSV:GHSA-G6WM-2V64-WQ36...