๐ Mail.ru: [my.games] Stored XSS via untrusted bucket
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vulners.com
Proxy pass for the path in my.games domain was misconfigured to point to the root of public S3 storage, allowing to place static content in the domain path leading to XSS... ...