[Security Bug] Path Traversal Vulnerability in the API.

### Describe the bug 
------
When performing static code analysis, if a parameter received in the API is forwarded directly to the user without validation, a critical vulnerability arises.In the Devika.py file, the /api/get-browser-snapshot endpoint takes the query from the request and sends the specified file to the user. Since there is no filtering or additional validation, any file can be sent to the user.

### PoC
------
The vulnerability arises as you can see from below.

- **Vulnerable Endpoint**: localhost:1337/api/get-browser-snapshot?snapshot_path=
- **Payload**: ../../../../../../etc/passwd

_Url:_
<img width="1277" alt="Image" src="https://github.com/user-attachments/assets/00f8d317-b345-461b-9c1a-42db937edf28" />

_File Content_:
<img width="446" alt="Image" src="https://github.com/user-attachments/assets/2a3999ad-c8b6-4bfd-bba2-64c4a49e97f8" />

_Vulnerable Code Snippet_:
<img width="473" alt="Image" src="https://github.com/user-attachments/assets/b81b4422-c8f0-4997-a1a5-c25ad1986583" />

### Mitigation
------
- https://owasp.org/www-community/attacks/Path_Traversal
- https://brightsec.com/blog/directory-traversal-mitigation/
- https://portswigger.net/web-security/file-path-traversal

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Security Bug] Path Traversal Vulnerability in the API. #681

Describe the bug

PoC

Mitigation

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Security Bug] Path Traversal Vulnerability in the API. #681

Description

Describe the bug

PoC

Mitigation

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions