CWE-641
Improper Restriction of Names for Files and Other Resources
The product constructs the name of a file or other resource using input from an upstream component, but it does not restrict or incorrectly restricts the resulting name.
Official CWE-641 definition at MITREImpactr finds and proves weaknesses like CWE-641 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist