Skip to main content
WP HealthKit

Directory Traversal

An attack using ../ sequences to access files outside the intended directory.

How it works

An attack using ../ sequences to access files outside the intended directory.

In WordPress

WordPress plugins that serve files based on user input must validate paths. The ABSPATH guard prevents direct file access.

Related terms

Local File Inclusion

WP HealthKit checks for Directory Traversal-related vulnerabilities automatically

Run a Free Audit
All terms
What Is Directory Traversal? — WordPress Security Glossary | WP HealthKit