SDT 312 – Testing for (Path Traversal) Improper Limitation of a Pathname to a Restricted Directory (UPDATED)
COURSE OVERVIEW
Many file operations are intended to take placed within a restricted directory, however, the software does not properly neutralize special elements within a pathname which results in various security consequences. This course introduces ways to identify and mitigate this security weakness, referenced as CWE-22 by the 2020 CWE Top 25.
Topics include:
- Recognizing the impact of this vulnerability
- Techniques for nding path traversal issues through code review
- Application of secure coding best practices to prevent these attacks
- Testing to detect this security weakness
Course Duration : 10 mins
COURSE OVERVIEW
Many file operations are intended to take placed within a restricted directory, however, the software does not properly neutralize special elements within a pathname which results in various security consequences. This course introduces ways to identify and mitigate this security weakness, referenced as CWE-22 by the 2020 CWE Top 25.
Topics include:
- Recognizing the impact of this vulnerability
- Techniques for nding path traversal issues through code review
- Application of secure coding best practices to prevent these attacks
- Testing to detect this security weakness
Course Duration : 10 mins
