Initial payloads such as ../../../etc/passwd were blocked. so we used curl and ....// kind of payloads so the web application strips one ../ and keeps the other and it is processed in the backend
we were able to read the passwd file and solve the lab
