The software uses external input to construct a pathname that
should be within a restricted directory, but it does not properly neutralize
"/dir/../filename" sequences that can resolve to a location that is outside of
that directory.
Paid content will be excluded from the download. |
Filter |
|
Matches : 909 | Download | Alert* |
© SecPod Technologies