Java(Servlet) Dangerous function - rinku191/OSWE-prepration GitHub Wiki

<—————-Directory Traversal————→

Open a file
File f = new File(“filePath”, userinput);

Reading & Writing file
java.io.FileInputStream
java.io.FileOutputStream
java.io.FileReader
java.io.FileWriter

Ex: FileInputStream fis = new FileInputStream(“filePath” + userinput);

<—————-SSRF————→

Open a URL
InputStream in = new URL.openStream()
where url = User supplied Input

⚠️ GitHub.com Fallback ⚠️