[Bug] FTP Path Traversal Vulnerability

### Describe the bug

Crafting specific paths (e.g., ../../) can bypass the restrictions of the FTP mount directory.

### To Reproduce

The working directory is /home/user/rootfs, and a file 'flag' exists in the /home/user directory. Running the following commands can get the flag.
```shell
$ python mavftp.py --device tcp:127.0.0.1:5760 get ../flag flag
```

### Expected behavior

Cannot access the parent directory of the mounted directory.

### Screenshot / Media

<img width="1564" height="610" alt="Image" src="https://github.com/user-attachments/assets/cff04fbc-7ba8-4f54-afd7-83695aa1be92" />

### Flight Log

_No response_

### Software Version

_No response_

### Flight controller

_No response_

### Vehicle type

None

### How are the different components wired up (including port information)

_No response_

### Additional context

_No response_

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[Bug] FTP Path Traversal Vulnerability #25808

Describe the bug

To Reproduce

Expected behavior

Screenshot / Media

Flight Log

Software Version

Flight controller

Vehicle type

How are the different components wired up (including port information)

Additional context

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Bug] FTP Path Traversal Vulnerability #25808

Description

Describe the bug

To Reproduce

Expected behavior

Screenshot / Media

Flight Log

Software Version

Flight controller

Vehicle type

How are the different components wired up (including port information)

Additional context

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions