CVE-2002-0196

Name of the Vulnerable Software and Affected Versions CwpAPI version 1.1

Description The issue allows remote attackers to read or write files outside of the web root, in other directories whose path includes the web root, due to inadequate path verification by the GetRelativePath function.

Recommendations For version 1.1, consider implementing proper path validation to prevent access to files outside the intended web root directory. As a temporary workaround, restrict access to sensitive files and directories to minimize the risk of exploitation.