Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers at the same time. A path traversal vulnerability exists in Rockwell Automation Thinmanager Thinserver, which stems from the filename field failing to properly filter special elements in the path of a resource or file. An attacker could use this vulnerability to upload arbitrary files to any directory on a disk drive.