lollms-webui/tests/pentests/path_traversal/open_code_folder_vulenerability.py

import requests

# Set the URL of the endpoint
url = "http://localhost:9600/open_code_folder"

# Valid folder path
valid_folder_path = {"folder_path": "c:"}

# Non-valid executable file path
non_valid_file_path = {"folder_path": "c:/file.exe"}

# Send the valid folder path request
valid_response = requests.post(url, json=valid_folder_path)
print(valid_response.json())

# Send the non-valid executable file path request
non_valid_response = requests.post(url, json=non_valid_file_path)
print(non_valid_response.json())
Path traversal vulenerability fix 2024-02-14 23:35:04 +00:00			`import requests`

			`# Set the URL of the endpoint`
			`url = "http://localhost:9600/open_code_folder"`

			`# Valid folder path`
			`valid_folder_path = {"folder_path": "c:"}`

			`# Non-valid executable file path`
			`non_valid_file_path = {"folder_path": "c:/file.exe"}`

			`# Send the valid folder path request`
			`valid_response = requests.post(url, json=valid_folder_path)`
			`print(valid_response.json())`

			`# Send the non-valid executable file path request`
			`non_valid_response = requests.post(url, json=non_valid_file_path)`
			`print(non_valid_response.json())`