Demo web app have basic vuln in feature:
- Resetpassword
- Download file with directory traversal from server
pip install requirements.txt
config mail request and mail reply
in file app/app.py and attack/solve.py
[DETACH]
python3 app.py
python3 solve.py