CWE-363
Race Condition Enabling Link Following
The product checks the status of a file or directory before accessing it, which produces a race condition in which the file can be replaced with a link before the access is performed, causing the product to access the wrong file.
Official CWE-363 definition at MITREImpactr finds and proves weaknesses like CWE-363 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist