Check vulnerability for sequences stripped with superfluous URL-decode

GET {{base_url}}

This request checks if the APIs allows an attacker to access file present in the server by passing the file path having various non-standard encodings, such as ..%c0%af or ..%252f to bypass the input filter.

HEADERS

KeyDatatypeRequiredDescription
{{access_token_key}}string