4 matches found
CVE-2024-28823
Amazon AWS aws-js-s3-explorer aka AWS JavaScript S3 Explorer 1.0.0 allows XSS via a crafted S3 bucket name to index.html...
CVE-2024-28823
Amazon AWS aws-js-s3-explorer aka AWS JavaScript S3 Explorer 1.0.0 allows XSS via a crafted S3 bucket name to index.html...
CVE-2024-28823
Amazon AWS aws-js-s3-explorer aka AWS JavaScript S3 Explorer 1.0.0 allows XSS via a crafted S3 bucket name to index.html...
CVE-2024-28823
CVE-2024-28823 affects Amazon AWS aws-js-s3-explorer (1.0.0) . The vulnerability allows XSS when an attacker uses a crafted S3 bucket name that targets the explorer’s index.html. The root cause is a cross-site scripting vector via user-controlled bucket names, enabling execution of malicious scri...