A vulnerability was found in Netless Agora Flat Server (version unknown). It has been classified as critical. Affected is an unknown code of the file v1/controller/cloudStorage/alibabaCloud/remove/index.ts of the component Remove API. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. A possible mitigation has been published before and not just after the disclosure of the vulnerability.