VYPR

S3 Proxy

by Oxyno Zeta

Source repositories

CVEs (2)

  • CVE-2026-42882CriMay 11, 2026
    risk 0.54cvss 9.4epss 0.01

    oxyno-zeta/s3-proxy is an aws s3 proxy written in go. Prior to 5.0.0, s3-proxy contains an authentication bypass caused by inconsistent URL path interpretation between the authentication middleware and the bucket handler. The authentication middleware evaluates resource path…

  • CVE-2025-27088Feb 20, 2025
    risk 0.00cvss epss 0.00

    oxyno-zeta/s3-proxy is an aws s3 proxy written in go. In affected versions a Reflected Cross-site Scripting (XSS) vulnerability enables attackers to create malicious URLs that, when visited, inject scripts into the web application. This can lead to session hijacking or phishing…