CWE-32 - Path Traversal: \'...\' (Triple Dot)

Description

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize \'...\' (triple dot) sequences that can resolve to a location that is outside of that directory.

Latest vulnerabilities for CWE-32

No vulnerabilities found using your search criteria

References

Description of CWE-32 on Mitre website