Hi Rajendra,
you forgot to tell us what tool it was that gave you this "flaw". Or was this something produced from a human code audit?
I found the exact phrase thrown at you by googling it and it turned up this interesting website:
Common Weakness Enumeration: CWE-73: External Control of File Name or Path[
^].
To see what you can do about each of the "flaws" listed on this site look out for the sections headed "
Potential mitigations".
Please do tell what tool was used to do the code analysis (or alternatively if it was done via code review).
Regards,
— Manfred