Lab #1 File path traversal, simple case

In this video, we cover Lab #1 in the Directory Traversal Vulnerabilities module of the Web Security Academy. This lab contains a file path traversal vulnerability in the display of product images. The application validates that the supplied filename ends with the expected file extension. To solve the lab, we retrieve the contents of the /etc/passwd file.

▬ 🔗 Links 🔗 ▬▬▬▬▬▬▬▬▬▬

Notes.txt document:

Python script:

Web Security Academy Exercise Link:

Rana's Twitter account:

Complete and Continue