Directory Traversal
A web security flaw called directory traversal (sometimes called file path traversal) enables an attacker to access any files on the server hosting an application. This flaw could compromise critical operating system files, back-end system login information, application code, and data. An attacker may occasionally be able to write to any file on the server, which would give them the ability to change application data or behavior and ultimately gain complete control of the server.
