2 matches found
The vulnerability of the Go programming language’s filepath package, which allows attackers to disclose protected information
The vulnerability of the Go programming language’s filepath package is related to incorrect restrictions on the path name for restricted access directories. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose sensitive information...
Directory Traversal
Overview std/path/filepath is a Go standard library package std/path/filepath Affected versions of this package are vulnerable to Directory Traversal. Go Vulnerability Report: On Windows, the filepath.Clean function can convert certain invalid paths to valid, absolute paths, potentially allowing ...