CWE-41
Improper Resolution of Path Equivalence
The product is vulnerable to file system contents disclosure through path equivalence. Path equivalence involves the use of special characters in file and directory names. The associated manipulations are intended to generate multiple names for the same object.
Official CWE-41 definition at MITREImpactr finds and proves weaknesses like CWE-41 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist