CWE-59 - CERT CVE

CWE-59 - Improper Link Resolution Before File Access ('Link Following')

The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

CAPEC ID	Naziv
CAPEC-132	Symlink Attack
CAPEC-17	Using Malicious Files
CAPEC-35	Leverage Executable Code in Non-Executable Files
CAPEC-76	Manipulating Web Input to File System Calls