Skip to content

Client-Side Path Traversal

CSPT Checks

  • Check the network tab for requests to API endpoints
  • Carefully review the client-side code and AJAX requests to identify other endpoints that may be useful
  • Check to see what other methods are being used with endpoints
  • Check for chains with other vulns --
    • Is anything reflected on other endpoints? Try XSS