This script is possibly vulnerable to directory traversal attacks.
Directory Traversal is a vulnerability which allows attackers to access restricted directories and read files outside of the web server's root directory.
- Your script should filter metacharacters from user input.
- WordPress Plugin GRAND Flash Album Gallery Multiple Vulnerabilities (2.00)
- Apache Tomcat JK connector security bypass
- WordPress Plugin Import CSV Directory Traversal (1.0)
- WordPress Plugin WP Rocket Local File Inclusion (2.10.3)
- WordPress Plugin CSV Import for WordPress Arbitrary File Disclosure (3.7)