Injection: Directory Traversal¶

Identifier: directory_traversal

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner	ASM Scanner

Description¶

Directory traversal vulnerabilities occur when applications do not properly validate file path inputs, allowing attackers to access files outside the intended directory and potentially expose sensitive configuration or system information.

How we test: We inject directory traversal payloads containing path manipulation sequences into request parameters and analyze responses to detect if files outside the intended directory can be accessed. We test for various path traversal techniques and check if file path inputs are properly sanitized.

Prerequisites:

The target must expose path-like request parameters that can be safely tested.
Response analysis requires non-empty responses that can be compared against baseline behavior.

References:

https://escape.tech/blog/file-inclusion-directory-traversal-graphql/

Configuration¶

Example¶

Example configuration:

---
security_tests:
  directory_traversal:
    skip: false

Reference¶

`skip`¶

Type : boolean

Skip the test if true.