heise online

Secure Coding: Best practices for using Java NIO against path traversal

The article Secure Coding: Preventing unauthorized access through path traversal (CWE-22) has already described the dangers posed by the critical vulnerability CWE-22 (path traversal) in software ...
InfoWorld

NIO.2 cookbook, Part 3

The previous two posts in my NIO.2 cookbook series presented simple recipes for copying and moving files, deleting files and directories, working with paths and attributes, and performing various ...
heise online

Page 2: Java libraries that help mitigate CWE-22

Apache Commons IO provides a set of utilities for working with the file system that can be helpful in preventing path traversal vulnerabilities. The FilenameUtils class contains methods for ...
InfoWorld

NIO.2 cookbook, Part 2

My previous post launched a three-part series on NIO.2 recipes. I presented three recipes for copying files, deleting files and directories, and moving files. In this post, I present path-related ...