CWE-57 – Path Equivalence: ‘fakedir/../realdir/filename’
Description The software contains protection mechanisms to restrict access to 'realdir/filename', but it constructs pathnames using external input in the form of 'fakedir/../realdir/filename' that are...