github.com/alist-org/alist is vulnerable to directory traversal. The vulnerability exists due to a lack of validation of the file upload permissions in the library, allowing an attacker to gain access to restricted files using ... /
on the path URL