CWE-59
Improper Link Resolution Before File Access ('Link Following')
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Official CWE-59 definition at MITREImpactr finds and proves weaknesses like CWE-59 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist