Alistgo Vulnerabilities
Comprehensive security vulnerability database for Alistgo products
3
1
2
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2023-33498 | 8.8 | This vulnerability allows low-privilege users to upload any type of file to the system, which could lead to malicious files being executed or sensitive data being exposed. It affects versions of the alist software up to 3.16.3, meaning that if you're using an older version, you should update it immediately to prevent exploitation. | alistgoalist | Theoretical | over 2 years agoJun 7, 2023 |
| CVE-2023-31726 | 7.5 | This vulnerability allows attackers to access sensitive information that they shouldn't be able to see in AList version 3.15.1. It can be exploited if the attacker knows how to bypass the system's access controls, making it crucial for users to update to a patched version to protect their data. | alistgoalist | Exploit Available | over 2 years agoMay 23, 2023 |
| CVE-2022-45968 | 8.8 | This vulnerability allows an attacker with file upload permissions to upload any type of file, including potentially harmful ones, to any folder in the system, even those that are password protected. This means that if a user has the ability to upload files, they can exploit this flaw to compromise the security of the entire application. | alistgoalist | Exploit Available | about 3 years agoDec 12, 2022 |
About Alistgo Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Alistgo products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.