Pantsir — Security Assessment & Training

PantsirПанцирь

Files

analytics-path-traversal-go

Recently created

Jump to the latest lab.

Auth Service (PHP) - SQL Injection & Weak Hash

A PHP auth endpoint concatenates user input into SQL and uses md5 for passwords.

phpmedium

Preparing access

Checking your lab membership…

Analytics Logs (Path Traversal)

go A logs endpoint reads files by name from a logs directory without path sanitization, allowing traversal.

easy180 ptsfreego

Overview

The Analytics service exposes multiple endpoints that return the contents of log files for debugging:

GET /logs?file=... (in files/main.go)
GET /logs2?file=... (in files/server.go + files/handlers/logs.go)

An incident revealed arbitrary file reads on the host by abusing .. path traversal.

Your task: identify where traversal occurs and propose a safe join pattern. See files/utils/fs.go for a safe join example (not used by the vulnerable handlers).

Wrap

handlers/logs.gogo14px