CVE-2023-33498
8.8HIGHalist <=3.16.3 is vulnerable to Incorrect Access Control. Low privilege accounts can upload any file.
Published: 6/7/2023Updated: 1/7/2025
Description
alist <=3.16.3 is vulnerable to Incorrect Access Control. Low privilege accounts can upload any file.
AI AnalysisPowered by AI
Affected Products
alist_projectalist
References
- https://github.com/YUyuanAN-com/loopholeBroken Link
- https://github.com/YUyuanAN-com/loopholeBroken Link