Path manipulation is a security vulnerability that occurs when user input is used to construct file paths, allowing attackers to access unauthorized files and directories. This can lead to unauthorized data exposure, data corruption, or even system compromise if not properly mitigated through input validation and sanitization.