VYPR

Maven package

io.github.robothy/local-s3-rest

pkg:maven/io.github.robothy/local-s3-rest

Vulnerabilities (1)

  • CVE-2025-27136MedMar 10, 2025
    affected < 1.21fixed 1.21

    LocalS3 is an Amazon S3 mock service for testing and local development. Prior to version 1.21, the LocalS3 service's bucket creation endpoint is vulnerable to XML External Entity (XXE) injection. When processing the CreateBucketConfiguration XML document during bucket creation, t