Directory traversal or path traversal attacks exploit weak security validation or sanitization of user-supplied file names, such that characters represent “traverse to parent directory,” which are passed through to the operating system. Directory traversal or path traversal are HTTP-borne attacks which grant attackers access to restricted directories and allows them to execute commands outside of the web server’s root directory.
What is a Directory Traversal or Path Traversal Attack?
Schedule a Demo
Security for Everyone that Visits Your Website
Find out if your website or web application is hiding vulnerable, malicious, or dangerous code that could damage your customers and your business. No payment information required.
Related articles
Web Application Security
How Magecart and e-skimming attacks are accelerating
Magecart attacks are accelerating. Many of us have heard about Magecart and other digital skimming attacks at Macy's, Ticketmaster, Smith & Wesson…
August 8, 2021
Client-Side Security
The Importance of Defending the Client-Side Attack Surface
It is strange to think that not that long ago the Internet was a very different place. A place filled with static…
August 8, 2021
Client-Side Security
Client-Side Security Risk Management: The Root-Cause Solution Approach
Client-side security is it's own universe. Learn about client-side risk management and the root-cause solution approach.
May 25, 2021