Backslash Vulnerability Database Path Traversal: '/../filedir'

Path Traversal: '/../filedir'

CWE-25

Short description

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize "/../" sequences that can resolve to a location that is outside of that directory.

Extended description

Best practices to prevent this CWE

  • LinkedIn Icon
  • Facebook Icon
  • X Icon
  • Link Icon