Vulnerability: Path Traversal attack #474
Labels
--breaking
Important: a change that will break a public API or user-facing behaviour
p-high
Should be completed in the next sprint
Using double dots as a segment of a path is possible to perform path traversal attack and access /etc/passwd.
Below there is a sample message used to perform 'dot-dot-slash' attack against the Language Server:
The text was updated successfully, but these errors were encountered: