File FilenameUtils
A file is opened to read its content. The filename comes from an input parameter. If an unfiltered parameter is passed to this file API, files from an arbitrary filesystem location could be read.
IndexedPublic repositoryMediumMedium confidenceVerifiedLGPL-3.0-onlykotlin
greprules fetch gitlab-sast-rules-lgpl-kotlin-file-rule-filenameutils --engine opengrepDescription
A file is opened to read its content. The filename comes from an input parameter. If an unfiltered parameter is passed to this file API, files from an arbitrary filesystem location could be read.
Detection target
Not provided
Recommended fix
Not provided
False-positive notes
Not provided
Community feedback
Sign in to report false positives, mark this rule useful, or suggest metadata improvements.