Path Manipulation
Shakihassan opened this issue · 1 comments
Shakihassan commented
Attackers are able to control the file system path argument to removeItemAtURL:error:() at GTMSessionUploadFetcher.m line 1565, which allows them to access or modify otherwise protected files.Attackers are able to control the file system path argument which allows them to access or modify otherwise protected files.
Reported by fortify on demand