Lucene search
Alist ProjectAlist
2 matches found
CVE-2024-48747
An issue in alist-tvbox v1.7.1 allows a remote attacker to execute arbitrary code via the /atv-cli file.
6.8CVSS7.6AI score0.00315EPSS
CVE-2024-47067
AList is a file list program that supports multiple storages. AList contains a reflected cross-site scripting vulnerability in helper.go. The endpoint /i/:link_name takes in a user-provided value and reflects it back in the response. The endpoint returns an application/xml response, opening it up t...
6.1CVSS5.7AI score0.00025EPSS