AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

Blast from the past: Cross Site Scripting on the AWS Console

infonews

security

Source: Embrace The RedJuly 1, 2020

Summary

A researcher discovered a persistent XSS (cross-site scripting, where an attacker injects malicious code into a web page that runs in other users' browsers) vulnerability in the AWS Console several years ago. The post documents how they found the bug, the techniques they used, and Amazon's response to the discovery.

Classification

Attack SophisticationModerate

Impact (CIA+S)

confidentialityintegrity

Affected Vendors

Amazon

Related Issues

info

Tech Giants Invest $12.5 Million in Open Source Security

Same vendorSecurityWeek

info

Stop using AI to submit bug reports, says Google

Same vendorCSO Online

Original source: https://embracethered.com/blog/posts/2020/aws-xss-cross-site-scripting-vulnerability/

First tracked: February 12, 2026 at 02:20 PM

Classified by LLM (prompt v3) · confidence: 60%