Heyo, it seems the usability test is impossible? My test have failed every time or I’m just silly but I manually did the tests against my app and it passed every single one.
Skill issue…?
Will investigate it. maybe a bug.
Tests are okay. ensure in your patch, do not blacklist “flag.log” or whitelist filenames. There are some tests on the server that checks for those.
for example, it is not allowed to prevent reading of “flag.log” to prevent someone who has successfully exploited the vulnerability but unable to read this file.
If you correctly patch the vulnerability, flag.log will not accessible.
Found my issue makes sense, thanks :>