CWE-46 - Path Equivalence: 'filename ' (Trailing Space)

Description

A software system that accepts path input in the form of trailing space ('filedir ') without appropriate validation can lead to ambiguous path resolution and allow an attacker to traverse the file system to unintended locations or access arbitrary files.The weakness is introduced during Implementation stage.

Latest vulnerabilities for CWE-46

References

Description of CWE-46 on Mitre website