Conditions préalables
The use of the file must be controlled by the file extension.
Atténuations
File extensions should be checked to see if non-visible characters are being included.
Faiblesses connexes
CWE-ID |
Nom de la faiblesse |
|
Path Equivalence: 'filename ' (Trailing Space) The product accepts path input in the form of trailing space ('filedir ') without appropriate validation, which can lead to ambiguous path resolution and allow an attacker to traverse the file system to unintended locations or access arbitrary files. |
Soumission
Nom |
Organisation |
Date |
Date de publication |
CAPEC Content Team |
The MITRE Corporation |
2018-05-31 +00:00 |
|
Modifications
Nom |
Organisation |
Date |
Commentaire |
CAPEC Content Team |
The MITRE Corporation |
2019-04-04 +00:00 |
Updated Related_Weaknesses |
CAPEC Content Team |
The MITRE Corporation |
2020-07-30 +00:00 |
Updated Taxonomy_Mappings |