diff --git a/src/Raven.Client/ServerWide/Operations/Migration/OfflineMigrationConfiguration.cs b/src/Raven.Client/ServerWide/Operations/Migration/OfflineMigrationConfiguration.cs
index 5d16fc55f878..0876d8055767 100644
--- a/src/Raven.Client/ServerWide/Operations/Migration/OfflineMigrationConfiguration.cs
+++ b/src/Raven.Client/ServerWide/Operations/Migration/OfflineMigrationConfiguration.cs
@@ -88,6 +88,7 @@ internal static void ValidateDataDirectory(string dataDirectory)
         internal static void ValidateExporterPath(string dataExporterPath)
         {
             var effectivePath = EffectiveDataExporterFullPath(dataExporterPath);
+            if (effectivePath.Contains("..")) throw new BadRequestException("Invalid exporter path.");
 
             if (File.Exists(effectivePath) == false)
                 throw new FileNotFoundException($"Could not find file {StorageExporterExecutable} at given location");