Class | Rack::Protection::PathTraversal |
In: |
lib/rack/protection/path_traversal.rb
|
Parent: | Base |
Prevented attack: | Directory traversal |
Supported browsers: | all |
More infos: | en.wikipedia.org/wiki/Directory_traversal |
Unescapes ’/’ and ’.’, expands path_info. Thus GET /foo/%2e%2e%2fbar becomes GET /bar.