CWE-50: CWE-50: Path Equivalence: '//multiple/leading/slash'

VariantStable

Description

View on MITRE
Back to CWE Lookup

Technical Details

Structure
Simple
Vulnerability Mapping
ALLOWED

Applicable To

Languages
Languages
Platforms
Languages

Frequently Asked Questions

What is CWE-50: CWE-50: Path Equivalence: '//multiple/leading/slash'?+

CWE-50: CWE-50: Path Equivalence: '//multiple/leading/slash' is a Common Weakness Enumeration (CWE) entry maintained by MITRE. Description

What are the security consequences of CWE-50: Path Equivalence: '//multiple/leading/slash'?+

If exploited, CWE-50 (CWE-50: Path Equivalence: '//multiple/leading/slash') it can compromise Read Files or Directories and Modify Files or Directories, leading to outcomes such as Scope: Confidentiality and Integrity.

Which programming languages are affected by CWE-50: Path Equivalence: '//multiple/leading/slash'?+

CWE-50 commonly affects Languages. Note that weaknesses are often language-agnostic patterns, so secure coding practices apply broadly.

What is the difference between a CWE and a CVE?+

A CWE (Common Weakness Enumeration) like CWE-50 describes a category of software weakness — the underlying flaw type. A CVE (Common Vulnerabilities and Exposures) identifies a specific, real-world vulnerability in a particular product. In short, a CWE is the kind of mistake, and a CVE is an instance of that mistake being found in software.

Learn More