pkg:Go/github.com/alist-org/alist/v3

12 total CVEsCRITICAL4HIGH5MEDIUM3

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2022-45969Alist vulnerable to Path Traversal in github.com/alist-org/alist
    from 0, < 3.6.0
  • CRITICAL9.8CVE-2022-45969Alist vulnerable to Path Traversal in github.com/alist-org/alist
    from 0, < 3.6.0
  • CRITICAL9.1CVE-2026-25160Alist has Insecure TLS Config in github.com/alist-org/alist
    from 0, < 3.57.0
  • CRITICAL9.1CVE-2026-25160Alist has Insecure TLS Config in github.com/alist-org/alist
    from 0, < 3.57.0
  • HIGH8.8CVE-2026-25161Alist vulnerable to Path Traversal in multiple file operation handlers in github.com/alist-org/alist
    from 0, < 3.57.0
  • HIGH8.8CVE-2026-25161Alist vulnerable to Path Traversal in multiple file operation handlers in github.com/alist-org/alist
    from 0, < 3.57.0
  • HIGH8.8CVE-2023-33498alist Incorrect Access Control vulnerability
    from 0, <= 3.16.3
  • HIGH8.8CVE-2022-45968AList vulnerable to Improper Preservation of Permissions in github.com/alist-org/alist
    from 0, < 3.5.1
  • HIGH8.8CVE-2022-45968AList vulnerable to Improper Preservation of Permissions in github.com/alist-org/alist
    from 0, < 3.5.1
  • MEDIUM6.1CVE-2024-47067Alist reflected Cross-Site Scripting vulnerability in github.com/alist-org/alist
    from 0, < 3.29.0
  • MEDIUM6.1CVE-2024-47067Alist reflected Cross-Site Scripting vulnerability in github.com/alist-org/alist
    from 0, < 3.29.0
  • MEDIUM5.4CVE-2022-45970Alist Cross-site Scripting vulnerability
    from 0, <= 3.5.1