CVE-2026-32265 | CraftCMS aws-s3 up to 2.2.4 actionLoadBucketData information disclosure (GHSA-hwj7-4vgc-j3v9)

A vulnerability marked as problematic has been reported in CraftCMS aws-s3 up to 2.2.4. Affected by this issue is the function actionLoadBucketData. Performing a manipulation results in information disclosure.

This vulnerability is known as CVE-2026-32265. Remote exploitation of the attack is possible. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More