Directory traversal, also known as path traversal, is a security flaw that happens when a website doesn't properly control the files and directories users can access. It allows attackers to go beyond the intended boundaries and view sensitive files. For example, if a website lets users download files by specifying a path, a lack of proper checks could let users navigate to files outside of what they should be able to see. This can lead to exposure of confidential information like user data or important system files.
There is an example of directory traversal on this website. Can you find it?
Go Home