search

awslabs / aws-js-s3-explorer

AWS JavaScript S3 Explorer is a JavaScript application that uses AWS's JavaScript SDK and S3 APIs to make the contents of an S3 bucket easy to browse via a web browser.
Apache License 2.0
818 stars 273 forks source link

xss injection #118

Closed 53n4d closed 7 months ago

53n4d commented 7 months ago

Hi, how are you?

I want to report xss vulnerability in aws s3 explorer. POC is below:

Click on the settings icon in the top right corner. Popup will open to enter S3 bucket name. Type a payload as you can see on this image, and press enter:

Screenshot from 2024-03-05 14-31-14

And you'll get an xss: Screenshot from 2024-03-05 14-31-23

john-aws commented 7 months ago

Thanks for the report and a quick way to repro the problem.

53n4d commented 7 months ago

Just to inform, i reported this to: https://cveform.mitre.org/ as a cve request, to inform users about affected version, because xss is usually high or critical vulnerability.

Thank you for your prompt response and quick fix.